Re: sample ipf ruleset is incorrect

To: Murray Armfield <murray%river-styx.org@localhost>
Subject: Re: sample ipf ruleset is incorrect
From: Martin Husemann <martin%duskware.de@localhost>
Date: Fri, 2 May 2008 12:34:27 +0200

On Fri, May 02, 2008 at 01:48:56PM +1000, Murray Armfield wrote:
>               # Handle traffic by different rulesets
>               block in  quick on ppp0 all head 1
>               block out quick on ppp0 all head 2
> 
>       The "quick" keyword here will tell ipf to not process any more rules 
> and 
> immediately block the traffic. The quick keyword should be removed so 
> additional rule processing is done.

From ipf.conf:

       [..] If quick is used
       with a head rule, rule processing isn't stopped until it  has  returned
       from processing the group.

So I think the example should work (haven't tested it myself though)

Martin

References:
- sample ipf ruleset is incorrect
  - From: Murray Armfield

Prev by Date: sample ipf ruleset is incorrect
Next by Date: suggested APM documentation modifications
Previous by Thread: sample ipf ruleset is incorrect
Next by Thread: suggested APM documentation modifications
Indexes:

Home | Main Index | Thread Index | Old Index