Date: Tue, 4 Aug 2009 15:55:52 -0700 From: Freddie Cash <fjwcash@gmail.com> To: mira@chlastak.cz Cc: freebsd-ipfw@freebsd.org Subject: Re: Matching all protocols in /etc/protocols (1 rule) Message-ID: <b269bc570908041555x7e2701e2k403944f537125ab9@mail.gmail.com> In-Reply-To: <4A78B6DD.7060908@chlastak.cz> References: <4A78B6DD.7060908@chlastak.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
2009/8/4 Miroslav Chlastak <mira@chlastak.cz> > Hi all, > > it's possible to create one rule to pass (or disable) all traffic (all > protocols - from /etc/protocols)? > I know, that I can use "all" keyword. But this keyword "all" mean only > "tcp, udp, icmp" protocols. > But there is more then tcp, udp and icmp protocol (gre,esp,ospf,...). If I > can allow all of this protocols, so at the moment I have to create 134 rules > (1 rule for 1 protocol from /etc/protocols). > If this is for IPFW, just use "ip" or "any". That will match any IP packets, regardless of what protocol data is inside the packet. -- Freddie Cash fjwcash@gmail.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b269bc570908041555x7e2701e2k403944f537125ab9>