projects
/
pve-firewall.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
fb424a0
)
add tcpflags to host.fw example
author
Dietmar Maurer
<dietmar@proxmox.com>
Thu, 20 Mar 2014 06:48:58 +0000
(07:48 +0100)
committer
Dietmar Maurer
<dietmar@proxmox.com>
Thu, 20 Mar 2014 06:48:58 +0000
(07:48 +0100)
example/host.fw
patch
|
blob
|
history
diff --git
a/example/host.fw
b/example/host.fw
index
79a5949
..
e38b2a5
100644
(file)
--- a/
example/host.fw
+++ b/
example/host.fw
@@
-20,6
+20,9
@@
nf_conntrack_max: 196608
# you need to enable that explicitly
allow_bridge_route: 1
+# filter illegal combinations of TCP flags
+tcpflags: 1
+
[RULES]
IN SSH(ACCEPT) net0