[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: IPF questions.
From:       Jim Sandoz <sandoz () lucent ! com>
Date:       2001-08-28 7:09:20
[Download RAW message or body]


david,
your rules which include the interface *only* apply
to that interface.  thus
> block out on ep1 from any to any port = 21
blocks any packets going out of the ep1 interface which
have a destination port of 21 (either tcp or udp, you didn't
specify which in the rule, so it matches either).

jim



AFT Tech wrote:

> I will put down a sample rule that I’m working with.
>
> What is the difference, if any, between
>
> block out on ep1 from any to any port = 21
>
> AND
>
> block out from any to any port = 21
>
> I have a box doing IPNAT, ep1 is the interface connected to the
> internet.Will the first rule only apply to ep1 while the second rule
> applies to all interfaces?
>
> Thanks,
>
> David
>

[prev in list] [next in list] [prev in thread] [next in thread]