Squid 2.7 - FreeBSD 8.2
启用ipfilter时,鱿鱼的互联网体验太慢了。这是我目前的配置:
rl0 =内部局域网 bge0 =互联网广域网
ipf.rules:
pass out quick on rl0 all
pass in quick on rl0 all
# out to internet
pass out quick on bge0 proto tcp from any to any port = 8080 flags S keep state
pass out quick on bge0 proto tcp from any to any port = 80 flags S keep state
pass out quick on bge0 proto tcp from any to any port = 443 flags S keep state
# Query to internet provider DNS
pass out quick on bge0 proto tcp from any to x.x.x.x port = 53 flags S keep state
pass out quick on bge0 proto udp from any to x.x.x.x port = 53 keep state
# protect my network
block out log first quick on bge0 all
block in log first quick on bge0 all
# others
pass in quick on lo0 all
pass out quick on lo0 all
当我打开所有流量时,互联网连接正常工作:
pass in quick on bge0 all
pass out quick on bge0 all
出了什么问题?
答案 0 :(得分:0)
FreeBSD中的IPfilter有点没有维护。您是否尝试使用PF?