Marko Cupa??(marko.cupac@mimar.rs) on 2020.05.04 22:42:50 +0200:
> I thought I could do such table like this:
>
> table <routable> { 0.0.0.0/0 \
> !0.0.0.0/8 \
> ...
> !224.0.0.0/3 }
>
> ...but https://www.openbsd.org/faq/pf/tables.html#addr states that "One
> limitation when specifying addresses is that 0.0.0.0/0 and 0/0 will not
> work in tables".
table <routable> { 1.0.0.0/8 \
2.0.0.0/8 \
3.0.0.0/8 \
4.0.0.0/6 \
8.0.0.0/5 \
16.0.0.0/4 \
32.0.0.0/3 \
64.0.0.0/2 \
128.0.0.0/3 \
160.0.0.0/3 \
192.0.0.0/3 \
!192.168.0.0/24 \
...
}
>
> I know I can solve this by reordering rules, and using block instead of
> pass, but I'd really like to have a table of all publicly routable ip
> addresses in pf.
>
> Regards,
> --
> Before enlightenment - chop wood, draw water.
> After enlightenment - chop wood, draw water.
>
> Marko Cupa??
> https://www.mimar.rs/
>
--
No comments:
Post a Comment