As per the developers handbook (5.3.1 step 1), prepare the vendor trees for

import of new ipfilter vendor sources by flattening them. To keep the tags consistent with dist, the tags are also flattened. Approved by: glebius (Mentor)
author: cy <cy@FreeBSD.org> 2013-07-19 05:41:57 +0000
committer: cy <cy@FreeBSD.org> 2013-07-19 05:41:57 +0000
commit: 672af8808c0e7c15f330b401482f9271c2eb3fa6 (patch)
tree: 225b5acf68c01bc6a260b386c2b2dbf4fa2839e3 /contrib/ipfilter/rules/tcpstate
parent: 71e82d94e82560b20789833f60056506de34de8b (diff)
download: FreeBSD-src-672af8808c0e7c15f330b401482f9271c2eb3fa6.zip
FreeBSD-src-672af8808c0e7c15f330b401482f9271c2eb3fa6.tar.gz
1 files changed, 0 insertions, 13 deletions
diff --git a/contrib/ipfilter/rules/tcpstate b/contrib/ipfilter/rules/tcpstate
deleted file mode 100644
index 339a25f..0000000
--- a/contrib/ipfilter/rules/tcpstate
+++ /dev/null
@@ -1,13 +0,0 @@
-#
-# Only allow TCP packets in/out of le0 if there is an outgoing connection setup
-# somewhere, waiting for it.
-#
-pass out quick on le0 proto tcp from any to any flags S/SAFR keep state
-block out on le0 proto tcp all
-block in on le0 proto tcp all
-#
-# allow nameserver queries and replies to pass through, but no other UDP
-#
-pass out quick on le0 proto udp from any to any port = 53 keep state
-block out on le0 proto udp all
-block in on le0 proto udp all
author	cy <cy@FreeBSD.org>	2013-07-19 05:41:57 +0000
committer	cy <cy@FreeBSD.org>	2013-07-19 05:41:57 +0000
commit	672af8808c0e7c15f330b401482f9271c2eb3fa6 (patch)
tree	225b5acf68c01bc6a260b386c2b2dbf4fa2839e3 /contrib/ipfilter/rules/tcpstate
parent	71e82d94e82560b20789833f60056506de34de8b (diff)
download	FreeBSD-src-672af8808c0e7c15f330b401482f9271c2eb3fa6.zip FreeBSD-src-672af8808c0e7c15f330b401482f9271c2eb3fa6.tar.gz