Hi !

On Mon, 8 Oct 2001, Wojciech Puchar wrote:
> how to define rule that will block any SYN TCP packed from given
> interface?
> i just want globally block TCP connection from outside to machine

block in log proto tcp from any to any flags S

does the job here. (I have some group stuff around to set it to the correct
interface and so).

...Michael

-- 
visit http://www.bsdfans.org/   Home network powered by: NetBSD OpenBSD FreeBSD
Solaris HP-UX IRIX AIX MUNIX Tru64 Ultrix VMS SINIX Dolphin_Unix OpenStep MacOS