[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pf rule sintax (newbie)



On 10/03/2003, thebiMbo@tiscali.it <thebiMbo@tiscali.it> wrote To pf@benzedrine.cx:
> I'm almost totally new to pf.
> I'v noticed that this syntax is not accepted:
> ----
> Ext_If = rl0
> MyVar = { 1.2.3.4/32, 2.1.0.0/24 }
> 
> pass in on $Ext_If from any to !$MyVar
> ----
> 
> I think this should be a honest rule, am i wrong somewhere !?
No, you cannot use negated lists. They would always match in one or
the other way. Short, it wouldnt do what you want to achieve there.
Use { !1.2.3.4/32, !2.1.0.0/24}
ciao
-- 
 Philipp Buehler  -  <pb@sysfive.com>  -  http://sysfive.com/
 sysfive.com GmbH - UNIX. Networking. Security. Applications.
 Steilshooperstr. 184, 22305 Hamburg, Germany - GSM +49-179-1136646