/share/examples/ipfilter/ipf.conf.permissive
https://bitbucket.org/freebsd/freebsd-head/ · Unknown · 30 lines · 30 code · 0 blank · 0 comment · 0 complexity · 72e8437292d0d0a5c1d90203ff1cbf03 MD5 · raw file
- # $FreeBSD$
- # augmented rules generated by mkfilters
- block in log quick from any with ipopts
- block in log quick proto tcp from any to any with short
- block in log quick all with opt lsrr
- block in log quick all with opt ssrr
- #-------------------------------------------------------
- # loopback pakets left unmolested
- pass in quick on lo0 all
- pass out quick on lo0 all
- #-------------------------------------------------------
- pass out on ed1 all head 150
- block out from 127.0.0.0/8 to any group 150
- block out from any to 127.0.0.0/8 group 150
- block out from any to 192.168.1.110/32 group 150
- #-------------------------------------------------------
- pass in on ed1 all head 100
- block in from 127.0.0.0/8 to any group 100
- block in from 192.168.1.110/32 to any group 100
- block in from 192.168.0.1/24 to any group 100
- #-------------------------------------------------------
- pass out on fxp0 all head 250
- block out from 127.0.0.0/8 to any group 250
- block out from any to 127.0.0.0/8 group 250
- block out from any to 192.168.0.1/32 group 250
- #-------------------------------------------------------
- pass in on fxp0 all head 200
- block in from 127.0.0.0/8 to any group 200
- block in from 192.168.0.1/32 to any group 200
- block in from 192.168.1.110/24 to any group 200