From owner-freebsd-ipfw@FreeBSD.ORG  Tue Aug  4 22:49:30 2009
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 58345106566B
	for <freebsd-ipfw@freebsd.org>; Tue,  4 Aug 2009 22:49:30 +0000 (UTC)
	(envelope-from mira@chlastak.cz)
Received: from mail.intime.cz (mail.intime.cz [88.208.96.252])
	by mx1.freebsd.org (Postfix) with ESMTP id 13DD28FC13
	for <freebsd-ipfw@freebsd.org>; Tue,  4 Aug 2009 22:49:29 +0000 (UTC)
	(envelope-from mira@chlastak.cz)
Received: from localhost (localhost [127.0.0.1])
	by mail.intime.cz (Postfix) with ESMTP id B7C8F5D7131
	for <freebsd-ipfw@freebsd.org>; Wed,  5 Aug 2009 00:35:58 +0200 (CEST)
X-Virus-Scanned: amavisd-new at mail.intime.cz
Received: from mail.intime.cz ([127.0.0.1])
	by localhost (mail.intime.cz [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id twMPkYh-pvDq for <freebsd-ipfw@freebsd.org>;
	Wed,  5 Aug 2009 00:35:54 +0200 (CEST)
Received: from [192.168.200.99] (45.227.broadband3.iol.cz [85.70.227.45])
	by mail.intime.cz (Postfix) with ESMTP id D5B225D5388
	for <freebsd-ipfw@freebsd.org>; Wed,  5 Aug 2009 00:35:53 +0200 (CEST)
Message-ID: <4A78B6DD.7060908@chlastak.cz>
Date: Wed, 05 Aug 2009 00:31:57 +0200
From: Miroslav Chlastak <mira@chlastak.cz>
User-Agent: Thunderbird 2.0.0.22 (Windows/20090605)
MIME-Version: 1.0
To: freebsd-ipfw@freebsd.org
Content-Type: text/plain; charset=ISO-8859-2; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Matching all protocols in /etc/protocols (1 rule)
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: mira@chlastak.cz
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Aug 2009 22:49:30 -0000

Hi all,

it's possible to create one rule to pass (or disable) all traffic (all 
protocols - from /etc/protocols)?
I know, that I can use "all" keyword. But this keyword "all" mean only 
"tcp, udp, icmp" protocols.
But there is more then tcp, udp and icmp protocol (gre,esp,ospf,...). If 
I can allow all of this protocols, so at the moment I have to create 134 
rules (1 rule for 1 protocol from /etc/protocols).


Thanks for any idea.

--
Mira