Re: statefull matching vs. local inet6

Max Laier [EMAIL PROTECTED] wrote: On a box running sshd (or something listening on an inet6 tcp port) load the following ruleset: pass quick on lo0 all pass quick on bge0 inet all block drop log all pass in log-all on bge0 inet6 proto tcp from any to 3000::1 port = ssh \ flags S/SA

Re: statefull matching vs. local inet6

On Friday 04 August 2006 13:13, Fabian Keil wrote: Max Laier [EMAIL PROTECTED] wrote: On a box running sshd (or something listening on an inet6 tcp port) load the following ruleset: pass quick on lo0 all pass quick on bge0 inet all block drop log all pass in log-all on bge0 inet6