aboutsummaryrefslogtreecommitdiff
path: root/sbin/pfctl/tests/files/pf0089.in
diff options
context:
space:
mode:
Diffstat (limited to 'sbin/pfctl/tests/files/pf0089.in')
-rw-r--r--sbin/pfctl/tests/files/pf0089.in25
1 files changed, 25 insertions, 0 deletions
diff --git a/sbin/pfctl/tests/files/pf0089.in b/sbin/pfctl/tests/files/pf0089.in
new file mode 100644
index 000000000000..1beda48b43b2
--- /dev/null
+++ b/sbin/pfctl/tests/files/pf0089.in
@@ -0,0 +1,25 @@
+# TCP connection tracking
+
+table <bad> persist
+
+block all
+block quick from <bad>
+
+pass out proto tcp flags S/SA keep state
+pass out proto { icmp, udp } keep state
+
+pass in on lo1000001 proto tcp to 10.0.0.1 port 22 flags S/SA \
+ keep state (max-src-conn 10, max-src-conn-rate 3/99)
+
+pass in on lo1000001 proto tcp to 10.0.0.2 port 22 flags S/SA keep state \
+ (max-src-conn 10)
+
+pass in on lo1000001 proto tcp to 10.0.0.3 port 22 flags S/SA keep state \
+ (max-src-conn-rate 3/99)
+
+pass in on lo1000000 proto tcp to 10.0.0.1 port 80 flags S/SA modulate state \
+ (max-src-conn 100, max-src-conn-rate 10/5, overload <bad> flush)
+
+pass in on lo1000000 proto tcp to 10.0.0.1 port 8080 flags S/SA synproxy state \
+ (max-src-conn 1000, max-src-conn-rate 1000/5, overload <bad> \
+ flush global)
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-03 18:39:38 +0000