summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--etc/inc/filter.inc4
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/inc/filter.inc b/etc/inc/filter.inc
index e716016..4680db5 100644
--- a/etc/inc/filter.inc
+++ b/etc/inc/filter.inc
@@ -2072,6 +2072,10 @@ function filter_rules_generate() {
$ipfrules .= <<<EOD
+# We use the mighty pf, we cannot be fooled.
+block quick proto { tcp, udp } from any port = 0 to any
+block quick proto { tcp, udp } from any to any port = 0
+
# snort2c
table <snort2c> persist
block quick from <snort2c> to any label "Block snort2c hosts"
OpenPOWER on IntegriCloud