diff options
Diffstat (limited to 'contrib/ipfilter/rules/example.8')
-rw-r--r-- | contrib/ipfilter/rules/example.8 | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/contrib/ipfilter/rules/example.8 b/contrib/ipfilter/rules/example.8 new file mode 100644 index 0000000..baa0258 --- /dev/null +++ b/contrib/ipfilter/rules/example.8 @@ -0,0 +1,10 @@ +# +# block all incoming TCP connections but send back a TCP-RST for ones to +# the ident port +# +block in proto tcp from any to any flags S/SA +block return-rst in quick proto tcp from any to any port = 113 flags S/SA +# +# block all inbound UDP packets and send back an ICMP error. +# +block return-icmp in proto udp from any to any |