Last active
January 10, 2021 17:48
-
-
Save vitaly/fc0cb6986a2a3d92fb86b2239c8cf1cf to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # before corectld (mehserve redirect works) | |
| r scrub-anchor "com.apple/*" all fragment reassemble | |
| r anchor "com.apple/*" all | |
| n nat-anchor "com.apple/*" all | |
| n rdr-anchor "com.apple/*" all | |
| com.apple r anchor "200.AirDrop/*" all | |
| com.apple r anchor "250.ApplicationFirewall/*" all | |
| com.apple/200.AirDrop/Bonjour r pass in on p2p0 inet6 proto udp from any to any port = 5353 keep state | |
| com.apple/200.AirDrop/Bonjour r pass out on p2p0 proto tcp all flags any keep state | |
| com.apple/mehserve n rdr pass log inet proto tcp from any to 127.0.0.1 port = 80 -> 127.0.0.1 port 12439 | |
| # after corectld start (mehserve redirect still works) | |
| r scrub-anchor "com.apple/*" all fragment reassemble | |
| r anchor "com.apple/*" all | |
| n nat-anchor "com.apple/*" all | |
| n rdr-anchor "com.apple/*" all | |
| com.apple r anchor "200.AirDrop/*" all | |
| com.apple r anchor "250.ApplicationFirewall/*" all | |
| com.apple/200.AirDrop/Bonjour r pass in on p2p0 inet6 proto udp from any to any port = 5353 keep state | |
| com.apple/200.AirDrop/Bonjour r pass out on p2p0 proto tcp all flags any keep state | |
| com.apple/mehserve n rdr pass log inet proto tcp from any to 127.0.0.1 port = 80 -> 127.0.0.1 port 12439 | |
| corectld-forwarding-dns n rdr pass on bridge100 inet proto tcp from any to any port = 53 -> 192.168.64.1 port 15353 | |
| corectld-forwarding-dns n rdr pass on bridge100 inet proto udp from any to any port = 53 -> 192.168.64.1 port 15353 | |
| # after corectl run ((mehserve redirect no longer works) | |
| r scrub-anchor "com.apple/*" all fragment reassemble | |
| r scrub-anchor "com.apple.internet-sharing" all fragment reassemble | |
| r anchor "com.apple/*" all | |
| r anchor "com.apple.internet-sharing" all | |
| n nat-anchor "com.apple/*" all | |
| n nat-anchor "com.apple.internet-sharing" all | |
| n rdr-anchor "com.apple/*" all | |
| n rdr-anchor "com.apple.internet-sharing" all | |
| com.apple r anchor "200.AirDrop/*" all | |
| com.apple r anchor "250.ApplicationFirewall/*" all | |
| com.apple/200.AirDrop/Bonjour r pass in on p2p0 inet6 proto udp from any to any port = 5353 keep state | |
| com.apple/200.AirDrop/Bonjour r pass out on p2p0 proto tcp all flags any keep state | |
| com.apple/mehserve n rdr pass log inet proto tcp from any to 127.0.0.1 port = 80 -> 127.0.0.1 port 12439 | |
| com.apple.internet-sharing r scrub-anchor "shared_v4" all fragment reassemble | |
| com.apple.internet-sharing r anchor "shared_v4" all | |
| com.apple.internet-sharing n nat-anchor "shared_v4" all | |
| com.apple.internet-sharing n rdr-anchor "shared_v4" all | |
| com.apple.internet-sharing/shared_v4 r scrub on en0 all no-df fragment reassemble | |
| com.apple.internet-sharing/shared_v4 r scrub on bridge100 all no-df max-mss 1460 fragment reassemble | |
| com.apple.internet-sharing/shared_v4 r scrub on bridge100 proto esp all no-df fragment reassemble | |
| com.apple.internet-sharing/shared_v4 r pass on en0 all flags any keep state | |
| com.apple.internet-sharing/shared_v4 r pass on en0 proto esp all no state | |
| com.apple.internet-sharing/shared_v4 n nat on en0 inet from 192.168.64.0/24 to any -> (en0:0) extfilter ei | |
| com.apple.internet-sharing/shared_v4 n no nat on bridge100 inet from 192.168.64.1 to 192.168.64.0/24 | |
| corectld-forwarding-dns n rdr pass on bridge100 inet proto tcp from any to any port = 53 -> 192.168.64.1 port 15353 | |
| corectld-forwarding-dns n rdr pass on bridge100 inet proto udp from any to any port = 53 -> 192.168.64.1 port 15353 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment