| Building the Network You Need with OpenBSD's PF: EuroBSDCon, St. Julian's, September 26th 2013 | ||
|---|---|---|
| Prev | Next | |
Bar officially unroutable (RFC1918 et al) traffic
martians = "{ 127.0.0.0/8, 192.168.0.0/16, 172.16.0.0/12, \
10.0.0.0/8, 169.254.0.0/16, 192.0.2.0/24, \
0.0.0.0/8, 240.0.0.0/4 }"
block drop in quick on $ext_if from $martians
block drop out quick on $ext_if to $martiansNOTE: could usefully be rewritten as a table