Date: Mon, 01 Mar 2004 18:15:38 -0500 From: "Shaun T. Erickson" <ste@ste-land.com> To: Remko Lodder <remko@elvandar.org> Cc: freebsd-questions@freebsd.org Subject: Re: ipfilter tcp flags question Message-ID: <4043C41A.4010706@ste-land.com> In-Reply-To: <20040301230559.4218D2B4DA4@mail.evilcoder.org> References: <20040301230559.4218D2B4DA4@mail.evilcoder.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Remko Lodder wrote: > i do it like this: > > block in log quick proto tcp all flags FUP > block in log quick proto tcp all flags SAFRU/SAFRU > block in log quick proto tcp all flags SF/SF > block in log quick proto tcp all flags SR/SR I'll have to scratch my head over that one for a bit, before I understand it, but I guess you're saying that the above 4 rules imply a fifth in that if none were set, it couldn't get through them, right? I really dislike implied rules, and avoid them if at all possible, as they are hard to maintain. :) Is there no way to explicitly test for no flags being set? -ste
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4043C41A.4010706>