vuurmuur: Define a sane ruleset.

[matthijs/servers/drsnuggles.git] / etc / vuurmuur / interfaces / loopback-nic.conf

diff --git a/etc/vuurmuur/interfaces/loopback-nic.conf b/etc/vuurmuur/interfaces/loopback-nic.conf
new file mode 100644 (file)
index 0000000..190a1f1
--- /dev/null
+++ b/etc/vuurmuur/interfaces/loopback-nic.conf
@@ -0,0 +1,11 @@
+ACTIVE="Yes"
+IPADDRESS="127.0.0.1"
+INTERFACE=""
+VIRTUAL="No"
+RULE="protect against source-routed-packets"
+RULE="protect against icmp-redirect"
+RULE="protect against send-redirect"
+RULE="protect against rp-filter"
+RULE="protect against log-martians"
+COMMENT=""
+DEVICE="lo"