mirror of
https://github.com/Stichting-MINIX-Research-Foundation/netbsd.git
synced 2025-09-12 16:46:33 -04:00
19 lines
443 B
Plaintext
19 lines
443 B
Plaintext
# $NetBSD: example.12,v 1.1.1.1 2012/03/23 21:20:15 christos Exp $
|
|
#
|
|
# get rid of all short IP fragments (too small for valid comparison)
|
|
#
|
|
block in proto tcp all with short
|
|
#
|
|
# drop and log any IP packets with options set in them.
|
|
#
|
|
block in log all with ipopts
|
|
#
|
|
# log packets with BOTH ssrr and lsrr set
|
|
#
|
|
log in all with opt lsrr,ssrr
|
|
#
|
|
# drop any source routing options
|
|
#
|
|
block in quick all with opt lsrr
|
|
block in quick all with opt ssrr
|