Rivoreo Source Code Repositories
src.rivoreo.one / net / ipfilter / 6b9d05d2202e20e23c1405ac7f9813d0b9bc5b3e / . / rules / example.10
blob: 560d1e670f61d9a4b7dff5a3569b3052a3c49e06 [file] [log] [blame] [raw]
#
# pass ack packets (ie established connection)
#
pass in proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A
pass out proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A
#
# block incoming connection requests to my internal network from the big bad
# internet.
#
block in on le0 proto tcp from any to 10.1.0.0/16 flags S/SA
# to block the replies:
block out on le0 proto tcp from 10.1.0.0 to any flags SA/SA