I've been looking for a guide on how to setup a firewall on a *nix machine, but most guides are along the lines of 'how to make a NAT firewall with *nix.' I don't want a NAT box, I just want to setup a firewall on the machine that is just going to be used for it, and nothing else.
For example, say I want to us PF to only allow access to a port on my box from a certain ip range, say from my work to my box. My router doesn't offer this feature so I would have to just forward say, port 22 to my nix box from the router. But this would let any IP ssh into my box, and I'd rather only allow a certain IP range in, example 200.200.0.0/16 or something.
So I figured I could try my hand at then tightening it down on the*nix box's end. Any help with setting up PF for this sort of thing or a link to a nice 'easy-to-read-for-a-PF-noob' guide would be greatly appreciated.
I hope any of that made sense
For example, say I want to us PF to only allow access to a port on my box from a certain ip range, say from my work to my box. My router doesn't offer this feature so I would have to just forward say, port 22 to my nix box from the router. But this would let any IP ssh into my box, and I'd rather only allow a certain IP range in, example 200.200.0.0/16 or something.
So I figured I could try my hand at then tightening it down on the*nix box's end. Any help with setting up PF for this sort of thing or a link to a nice 'easy-to-read-for-a-PF-noob' guide would be greatly appreciated.
I hope any of that made sense