[ndbug] PF question
Hrishikesh Muruk
hrishim at gmail.com
Thu Apr 30 12:42:28 EDT 2015
On Thursday 30 April 2015, N.J. Thomas <njt at ayvali.org> wrote:
> * N.J. Thomas <njt at ayvali.org <javascript:;>> [2015-04-30 12:07:06-0400]:
> > pass in on fxp0 from 10.0.0.0/8
> > block in on fxp0 from 10.1.2.3
> >
> > This would pass in everything on 10.8, but block packets from 10.1.2.3.
>
> Typo, I mean 10/8.
>
> Thomas
>
> --
> New Delhi BSD User Group - General Discussion List
> talk at ndbug.in <javascript:;>
> http://ndbug.in/
>
Based on the section on tables from the same FAQ. I believe this will work
(i.e all in 10.0.0.0/8 except 10.1.2.3 will match the pass)
table <goodguys> { 10.0.0.0/8, !10.1.2.3 }
pass in on fxp0 from <goodguys> to any
Lists replicate the rule for each item. How do tables expand?
Thanks
Hrishi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ndbug.in/pipermail/talk/attachments/20150430/4f3b3728/attachment.html>
More information about the talk
mailing list