diff options
| author | shin <shin@FreeBSD.org> | 2000-01-29 13:54:44 +0000 |
|---|---|---|
| committer | shin <shin@FreeBSD.org> | 2000-01-29 13:54:44 +0000 |
| commit | 5a973d30653a0d2ce9d1bca438ae120ce1294ac2 (patch) | |
| tree | eec3caa9477b35ab902b34b223e2563e367b3d74 /sbin/ip6fw/sample.sh | |
| parent | 9baed61100deb3348d58b0ae491f730150f86a4b (diff) | |
| download | FreeBSD-src-5a973d30653a0d2ce9d1bca438ae120ce1294ac2.zip FreeBSD-src-5a973d30653a0d2ce9d1bca438ae120ce1294ac2.tar.gz | |
Add ip6fw.
Yes it is almost code freeze, but as the result of many thought, now I
think this should be added before 4.0...
make world check, kernel build check is done.
Reviewed by: green
Obtained from: KAME project
Diffstat (limited to 'sbin/ip6fw/sample.sh')
| -rw-r--r-- | sbin/ip6fw/sample.sh | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/sbin/ip6fw/sample.sh b/sbin/ip6fw/sample.sh new file mode 100644 index 0000000..32d7621 --- /dev/null +++ b/sbin/ip6fw/sample.sh @@ -0,0 +1,28 @@ +#!/bin/sh - +# $FreeBSD$ + +fwcmd=/usr/local/v6/sbin/ip6fw + +$fwcmd -f flush + +# +# loopback +# +$fwcmd add 1000 pass all from any to any via lo0 + +# +# ND +# +# DAD +$fwcmd add 2000 pass ipv6-icmp from ff02::/16 to :: +$fwcmd add 2100 pass ipv6-icmp from :: to ff02::/16 +# RS, RA, NS, NA, redirect... +$fwcmd add 2300 pass ipv6-icmp from fe80::/10 to fe80::/10 +$fwcmd add 2400 pass ipv6-icmp from fe80::/10 to ff02::/16 + +$fwcmd add 5000 pass tcp from any to any established + +# RIPng +$fwcmd add 6000 pass udp from fe80::/10 521 to ff02::9 521 + +$fwcmd add 65000 pass log all from any to any |
