Annotation of src/etc/ipf.rules, Revision 1.3
1.3 ! kstailey 1: # $OpenBSD: ipf.rules,v 1.2 1996/05/26 10:25:24 deraadt Exp $
1.1 dm 2: #
3: # IP filtering rules. See the ipf(5) man page for more
4: # information on the format of this file, and /usr/share/ipf
5: # for example configuration files.
6: #
7: # Pass all packets by default.
8: #
9: pass in from any to any
10: pass out from any to any
1.3 ! kstailey 11: #
! 12: # Prevent web server access, except to localhost which is using ip 10.1.1.3:
! 13: #
! 14: # block return-rst in proto tcp from any to any port = 80
! 15: # pass in proto tcp from 127.0.0.0/8 to 127.0.0.0/8 port = 80
! 16: # pass in proto tcp from 10.1.1.3 to 10.1.1.3 port = 80