Ignore:
Timestamp:
May 8, 2012, 5:19:24 PM (13 years ago)
Author:
rick
Message:

only allow reachable 172.16.0.0/12 subnets.

Related-To: nodefactory#153

File:
1 edited

Legend:

Unmodified
Added
Removed
  • branches/releng-9.0/nanobsd/files/etc/rc.conf

    r10700 r10719  
    2323lvrouted_enable="YES"
    2424lvrouted_flags="-u -s s00p3rs3kr3t -m 28"
     25
     26# Block the full range as smaller subnets are used for allowances, this avoids
     27# traffic going out (due to the default route) to unreachable parts to the
     28# 172.16.0.0/12 network.
     29static_routes="quickstop"
     30route_quickstop="-net 172.16.0.0/12 127.0.0.1 -reject"
    2531
    2632# NTP server needs working config with WL network or internet on boot
Note: See TracChangeset for help on using the changeset viewer.