Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

PF firewall equivalent of IP tables command?

I have configured apache in the httpd.conf file to work with user 'apachez' group 'groupz'. The 'apachez' user is a member of group 'groupz' on the Mountain Lion Server.


To block outbound requests by the apache user, to stop miscreants from bad behavior RE wget/scripts from external sites, in the iptables firewall you would do something like:


iptables -A OUTPUT -m owner --uid-owner apachez -p tcp --dport 80 -j DROP
iptables -A OUTPUT -m owner --uid-owner apachez -p tcp --dport 443 -j DROP


However, I need to do this in the PF (packet filter) firewall because that is what Mountain Lion Server uses.


Could someone please advise how to do the terminal command line(s) equivalent of the above for the PF firewall?


Regards.

Mac mini, OS X Server

Posted on Feb 6, 2013 1:05 AM

Reply

There are no replies.

PF firewall equivalent of IP tables command?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.