svn commit: r218957 - stable/7/share/examples/pf

Bruce Cran Tue, 22 Feb 2011 09:54:27 -0800

Author: brucec
Date: Tue Feb 22 17:51:45 2011
New Revision: 218957
URL: http://svn.freebsd.org/changeset/base/218957


Log:
  MFC r218854:
  
  Update the icmp example to show allowing only the safe types.
  
  Suggested by: Tom Judge <tom at tomjudge.com>

Modified:
  stable/7/share/examples/pf/pf.conf
Directory Properties:
  stable/7/share/examples/   (props changed)

Modified: stable/7/share/examples/pf/pf.conf
==============================================================================
--- stable/7/share/examples/pf/pf.conf  Tue Feb 22 17:50:33 2011        
(r218956)
+++ stable/7/share/examples/pf/pf.conf  Tue Feb 22 17:51:45 2011        
(r218957)
@@ -32,4 +32,4 @@
 #pass in on $ext_if proto tcp to ($ext_if) port ssh
 #pass in log on $ext_if proto tcp to ($ext_if) port smtp
 #pass out log on $ext_if proto tcp from ($ext_if) to port smtp
-#pass in on $ext_if proto icmp to ($ext_if)
+#pass in on $ext_if inet proto icmp from any to ($ext_if) icmp-type { unreach, 
redir, timex }
_______________________________________________
svn-src-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/svn-src-all
To unsubscribe, send any mail to "svn-src-all-unsubscr...@freebsd.org"

svn commit: r218957 - stable/7/share/examples/pf

Reply via email to