Module Name: src
Committed By: sevan
Date: Sat Sep 21 23:55:01 UTC 2019
Modified Files:
src/share/examples/npf: soho_gw-npf.conf
Log Message:
pastos
To generate a diff of this commit:
cvs rdiff -u -r1.16 -r1.17 src/share/examples/npf/soho_gw-npf.conf
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Modified files:
Index: src/share/examples/npf/soho_gw-npf.conf
diff -u src/share/examples/npf/soho_gw-npf.conf:1.16 src/share/examples/npf/soho_gw-npf.conf:1.17
--- src/share/examples/npf/soho_gw-npf.conf:1.16 Sat Sep 21 21:10:56 2019
+++ src/share/examples/npf/soho_gw-npf.conf Sat Sep 21 23:55:01 2019
@@ -1,4 +1,4 @@
-# $NetBSD: soho_gw-npf.conf,v 1.16 2019/09/21 21:10:56 sevan Exp $
+# $NetBSD: soho_gw-npf.conf,v 1.17 2019/09/21 23:55:01 sevan Exp $
#
# SOHO border
#
@@ -42,14 +42,14 @@ group "external" on $ext_if {
# Block inbound traffic from those on the block table
block in from <block>
- # Allow SSH on wired interface and log all connection attempts
+ # Allow inbound SSH and log all connection attempts
pass stateful in family inet4 proto tcp to $ext_v4 port ssh \
apply "log"
# Allow inbound traffic for services hosted on TCP
pass stateful in proto tcp to $ext_addrs port $services_tcp
- # Allow inbound traffic for services hosted on TCP
+ # Allow inbound traffic for services hosted on UDP
pass stateful in proto udp to $ext_addrs port $services_udp
# Passive FTP
