Annotation of src/share/ipf/example.10, Revision 1.2
1.1 dm 1: #
2: # pass ack packets (ie established connection)
3: #
1.2 ! kjell 4: pass in proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A
! 5: pass out proto tcp from 10.1.0.0/16 port = 23 to 10.2.0.0/16 flags A/A
1.1 dm 6: #
7: # block incoming connection requests to my internal network from the big bad
8: # internet.
9: #
10: block in on le0 proto tcp from any to 10.1.0.0/16 flags S/SA
11: # to block the replies:
12: block out on le0 proto tcp from 10.1.0.0 to any flags SA/SA
![[BACK]](/icons/back.gif){kind=icon}
Return to example.10 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / share / ipf