diff options
Diffstat (limited to 'share/ipf/example.9')
| -rw-r--r-- | share/ipf/example.9 | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/share/ipf/example.9 b/share/ipf/example.9 new file mode 100644 index 00000000000..77968f85d2f --- /dev/null +++ b/share/ipf/example.9 @@ -0,0 +1,12 @@ +# +# drop all packets without IP security options +# +block in all +pass in all with opt sec +# +# only allow packets in and out on le0 which are top secret +# +block out on le1 all +pass out on le1 all with opt sec-class topsecret +block in on le1 all +pass in on le1 all with opt sec-class topsecret |