(PM) Shorter filter command (fwd)

MegaZone (megazone@megazone.org)
Mon, 23 Feb 1998 03:16:10 -0800 (PST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: MegaZone: "Re: (PM) DOV Failure [Additional Info] (fwd)"
Previous message: MegaZone: "(PM) MULTIPLE ADDRESS POOLS (fwd)"

Once upon a time Philippe Duthoit shaped the electrons to say...
>I want to allow telnets to ports 4000 4001 4005 4101...99 4201..99 and
>5001...5
>when allowing 1 IP i must specify a rule for each port
>
>Isn't there a smarter filtercommand which lets me specify
>
>1 permit 123.123.123.123/32 200.200.200.200/32 tcp dest eq 4000-4299

No. But if you learn to use filter rule ordering can do it easily.

deny ... dst gt 4299
permit ... dst gt 3999
deny ... dst lt 4000

-MZ

--
<URL:mailto:megazone@megazone.org> Gweep, author, webmaster, human being, me
"A little nonsense now and then, is relished by the wisest men" 508-791-9803
<URL:mailto:megazone@gweep.net> <URL:http://www.megazone.org/> Hail Discordia!
-
To unsubscribe, email 'majordomo@livingston.com' with
'unsubscribe portmaster-users' in the body of the message.
Searchable list archive: <URL:http://www.livingston.com/Tech/archive/>

Next message: MegaZone: "Re: (PM) DOV Failure [Additional Info] (fwd)"
Previous message: MegaZone: "(PM) MULTIPLE ADDRESS POOLS (fwd)"