Stefan <[EMAIL PROTECTED]> writes:
> block in inet6 all
> pass in inet6 proto { tcp, udp } from any to any flags /S
'keep state' would certainly help.
I would suggest something along the lines of
block all
pass inet proto { tcp, udp } from $me to any port $portsiwant keep state
with useful definitions of the me and portsiwant macros up top.
--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://www.blug.linux.no/rfc1149/ http://www.datadok.no/ http://www.nuug.no/
"First, we kill all the spammers" The Usenet Bard, "Twice-forwarded tales"
20:11:56 delilah spamd[26905]: 146.151.48.74: disconnected after 36099 seconds.
