Bridged IPF Config Example Cont.
Kyle Amon,  Page 19
/etc/ipf.rules continued

  #--------------------------------------------------------------------.
  # Block and log everything else                                      |
  #--------------------------------------------------------------------+

  block in log quick on rl0

  #--------------------------------------------------------------------.
  # Logging override for things not to log                             |
  #--------------------------------------------------------------------+

  block in quick on rl0 from any to any port = netbios-ns
  block in quick on rl0 from any to any port = netbios-dgm
  block in quick on rl0 from any to any port = netbios-ssn

  #====================================================================.
  # All Interfaces [*]                                                 |
  #====================================================================+

  #--------------------------------------------------------------------.
  # Disallow short/fragmented packets                                  |
  #--------------------------------------------------------------------+

  block in log quick proto tcp all with short

  #--------------------------------------------------------------------.
  # Disallow source routed packets                                     |
  #--------------------------------------------------------------------+

  block in log quick all with opt lsrr
  block in log quick all with opt ssrr

  #--------------------------------------------------------------------.
  # Disallow OS fingerprinting                                         |
  #--------------------------------------------------------------------+

  block in log quick proto tcp from any to any flags FUP