blob: 36ef42179d504989a621cbd1b0f8542396ae86ad (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
|
[[!meta copyright="Copyright © 2013 Free Software Foundation, Inc."]]
[[!meta license="""[[!toggle id="license" text="GFDL 1.2+"]][[!toggleable
id="license" text="Permission is granted to copy, distribute and/or modify this
document under the terms of the GNU Free Documentation License, Version 1.2 or
any later version published by the Free Software Foundation; with no Invariant
Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license
is included in the section entitled [[GNU Free Documentation
License|/fdl]]."]]"""]]
`eth-filter` is a translator that implements a very simple stateless firewal.
# Source
[[source_repositories/incubator]], dde
# Usage:
For instance, to drop any attempt to access port 22:
settrans -c /dev/eth0f /hurd/eth-filter -i /dev/eth0 -r "not port 22"
This creates a /dev/eth0f device, which is the filtered version of /dev/eth0. One can then configure network by hand using /dev/eth0f instead of /dev/eth0:
settrans /servers/socket/2 /hurd/pfinet -i /dev/eth0f ...
or run dhclient /dev/eth0f, etc.
|