extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2025-01-12 00:28:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
bb7b3123df
shorewall_code/Shorewall/action.TCPFlags
Tom Eastep bb7b3123df Eliminate ?begin perl ... ?end Perl in many actions 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2016-03-12 12:15:07 -08:00

30 lines
669 B
Plaintext
Raw Blame History

#
# Shorewall version 5 - Drop TCPFlags Action
#
# /usr/share/shorewall/action.TCPFlags
#
# Accepts a single optional parameter:
#
# - = Do not Audit
# audit = Audit dropped packets.
#
#################################################################################
?if @1 ne '-' && @1 ne ''
?if @1 eq 'audit'
DEFAULTS A_DROP
?else
?error "The first parameter to TCPFlags must be 'audit' or '-'
?endif
?else
DEFAULTS DROP
?endif
@1 - - tcp ;; --tcp-flags ALL FIN,URG,PSH
@1 - - tcp ;; --tcp-flags ALL NONE
@1 - - tcp ;; --tcp-flags SYN,RST SYN,RST
@1 - - tcp ;; --tcp-flags SYN,FIN SYN,FIN
@1 - - tcp ;; --syn --sport 0
Reference in New Issue View Git Blame Copy Permalink