add tcpflags to host.fw example

author Dietmar Maurer <dietmar@proxmox.com>

Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)

committer Dietmar Maurer <dietmar@proxmox.com>

Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)
author Dietmar Maurer <dietmar@proxmox.com>
Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)
committer Dietmar Maurer <dietmar@proxmox.com>
Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)
diff --git a/example/host.fw b/example/host.fw

index 79a59492b1aa1168086b20156493bb1bb7651d05..e38b2a58b24fec3e55a9da53b1d4caa010fd2f96 100644 (file)
--- a/example/host.fw
+++ b/example/host.fw
@@ -20,6 +20,9 @@ nf_conntrack_max: 196608
  # you need to enable that explicitly
  allow_bridge_route: 1
  
+# filter illegal combinations of TCP flags
+tcpflags: 1
+
  [RULES]
  
  IN  SSH(ACCEPT) net0
author	Dietmar Maurer <dietmar@proxmox.com>
	Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)
committer	Dietmar Maurer <dietmar@proxmox.com>
	Thu, 20 Mar 2014 06:48:58 +0000 (07:48 +0100)