summaryrefslogtreecommitdiff
path: root/contrib/ipfilter/rules/example.12
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/ipfilter/rules/example.12')
-rw-r--r--contrib/ipfilter/rules/example.1217
1 files changed, 17 insertions, 0 deletions
diff --git a/contrib/ipfilter/rules/example.12 b/contrib/ipfilter/rules/example.12
new file mode 100644
index 000000000000..c0ba1d3cdda1
--- /dev/null
+++ b/contrib/ipfilter/rules/example.12
@@ -0,0 +1,17 @@
+#
+# get rid of all short IP fragments (too small for valid comparison)
+#
+block in proto tcp all with short
+#
+# drop and log any IP packets with options set in them.
+#
+block in log all with ipopts
+#
+# log packets with BOTH ssrr and lsrr set
+#
+log in all with opt lsrr,ssrr
+#
+# drop any source routing options
+#
+block in quick all with opt lsrr
+block in quick all with opt ssrr
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-25 07:13:13 +0000