mirror of
https://github.com/fwbuilder/fwbuilder
synced 2026-03-19 17:57:22 +01:00
34 lines
930 B
Plaintext
34 lines
930 B
Plaintext
|
|
set state-policy if-bound
|
|
|
|
#
|
|
# Scrub rules
|
|
#
|
|
scrub in all fragment reassemble
|
|
|
|
# NAT compiler errors and warnings:
|
|
# firewall22:NAT:2: warning: Translated Src, Dst and Srv are ignored in the NAT rule with action 'Branch'
|
|
#
|
|
# Rule 0 (NAT)
|
|
nat-anchor "ftp-proxy/*"
|
|
rdr-anchor "ftp-proxy/*"
|
|
#
|
|
# Rule 1 (NAT)
|
|
nat-anchor "NAT_1" proto {tcp udp icmp} from 192.168.1.0/24 to any
|
|
rdr-anchor "NAT_1" proto {tcp udp icmp} from 192.168.1.0/24 to any
|
|
#
|
|
# Rule 2 (NAT)
|
|
# firewall22:NAT:2: warning: Translated Src, Dst and Srv are ignored in the NAT rule with action 'Branch'
|
|
nat-anchor "NAT_1" proto {tcp udp icmp} from 192.168.1.0/24 to any
|
|
rdr-anchor "NAT_1" proto {tcp udp icmp} from 192.168.1.0/24 to any
|
|
|
|
#
|
|
# Rule 0 (global)
|
|
block log quick inet from any to any no state
|
|
#
|
|
# Rule fallback rule
|
|
# fallback rule
|
|
block quick inet from any to any no state
|
|
|
|
load anchor NAT_1 from "/etc/fw/firewall22-NAT_1.conf"
|