diff options
Diffstat (limited to 'rules/example.7')
-rw-r--r-- | rules/example.7 | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/rules/example.7 b/rules/example.7 new file mode 100644 index 0000000..062de98 --- /dev/null +++ b/rules/example.7 @@ -0,0 +1,12 @@ +# block all ICMP packets. +# +block in proto icmp all +# +# allow in ICMP echos and echo-replies. +# +pass in on le1 proto icmp from any to any icmp-type echo +pass in on le1 proto icmp from any to any icmp-type echorep +# +# block all ICMP destination unreachable packets which are port-unreachables +# +block in on le1 proto icmp from any to any icmp-type unreach code 3 |