Date: Wed, 03 Mar 2004 17:57:34 -0500 From: "Shaun T. Erickson" <ste@ste-land.com> To: freebsd-questions@freebsd.org Subject: Re: My ipfilter rules. Message-ID: <404662DE.6000204@ste-land.com> In-Reply-To: <4046402D.6030101@ste-land.com> References: <4046402D.6030101@ste-land.com>
next in thread | previous in thread | raw e-mail | index | archive | help
I wrote: > I was wondering if some of you, who are good at, would critique my > rules. > > Here's the file: http://www.ste-land.com/rules.html So far, I've gotten these suggestions: Apply the bogon list to the outbound path. Compress my blocking of netbios junk to one rule. Move bad options & flags check to head of list. Any other suggestions? Question: Is there some way I can have all outbound packets skip being tested by rules for inbound packets, and vice versa? -ste
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?404662DE.6000204>