vuurmuur: Define a sane ruleset.

[matthijs/servers/drsnuggles.git] / etc / vuurmuur / interfaces / zeratul-nic.conf

diff --git a/etc/vuurmuur/interfaces/zeratul-nic.conf b/etc/vuurmuur/interfaces/zeratul-nic.conf
new file mode 100644 (file)
index 0000000..6d788f7
--- /dev/null
+++ b/etc/vuurmuur/interfaces/zeratul-nic.conf
@@ -0,0 +1,11 @@
+ACTIVE="Yes"
+IPADDRESS="172.31.1.2"
+INTERFACE=""
+VIRTUAL="No"
+RULE="protect against source-routed-packets"
+RULE="protect against icmp-redirect"
+RULE="protect against send-redirect"
+RULE="protect against rp-filter"
+RULE="protect against log-martians"
+COMMENT="Direct link to Zeratul                                                                                                                                                                                                                          "
+DEVICE="eth1"