diff options
Diffstat (limited to 'rules/example.10')
| -rw-r--r-- | rules/example.10 | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/rules/example.10 b/rules/example.10 new file mode 100644 index 0000000..560d1e6 --- /dev/null +++ b/rules/example.10 @@ -0,0 +1,12 @@ +# +# pass ack packets (ie established connection) +# +pass in proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A +pass out proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A +# +# block incoming connection requests to my internal network from the big bad +# internet. +# +block in on le0 proto tcp from any to 10.1.0.0/16 flags S/SA +# to block the replies: +block out on le0 proto tcp from 10.1.0.0 to any flags SA/SA |
