MN128 SOHO SL11のIP filter設定

ip filter 5 pass in * * udp domain * remote *
ip filter 6 pass in * * tcp www * remote *
ip filter 7 pass in * * tcp 443 * remote *
ip filter 8 pass in * * tcp smtp * remote *
ip filter 9 pass in * * tcp pop3 * remote *
ip filter 10 pass in * * tcp ftpdata * remote *
ip filter 11 pass in * * tcp ftp * remote *
ip filter 12 reject in * 192.168.0.1/32 tcpest * * remote *
ip filter 13 reject in 10.0.0.0/8 * * * * remote *
ip filter 14 reject in 172.16.0.0/12 * * * * remote *
ip filter 18 reject in 192.168.0.0/16 * * * * remote *
ip filter 19 reject out * 10.0.0.0/8 * * * remote *
ip filter 20 reject out * 172.16.0.0/12 * * * remote *
ip filter 21 reject out * 192.168.0.0/16 * * * remote *
ip filter 25 reject dns qtype 6
ip filter 26 restrict out * * tcpfin * * remote *
ip filter 27 reject out * * * * 137-139 remote *
ip filter 28 reject out * * * 137-139 * remote *
ip filter 29 reject out * * udp 137 domain remote *
ip filter 30 pass in * * * 1024-65535 * remote *
ip filter 31 reject in * * tcpest * * remote *
ip filter 32 reject in * * udp * * remote *

ip filter 1 reject in 10.0.0.0/8 * * * * remote 0
ip filter 2 reject in 172.16.0.0/12 * * * * remote 0
ip filter 3 reject in 192.168.0.0/16 * * * * remote 0
ip filter 6 reject in * 192.168.0.0/32 * * * remote 0
ip filter 7 reject in * 192.168.0.255/32 * * * remote 0
ip filter 18 reject in * * tcpest * * remote 0
ip filter 19 pass in * * udp * 1024-65535 remote 0
ip filter 20 pass in * * tcp * 1024-65535 remote 0
ip filter 21 reject out * 10.0.0.0/8 * * * remote 0
ip filter 22 reject out * 172.16.0.0/12 * * * remote 0
ip filter 23 reject out * 192.168.0.0/16 * * * remote 0
ip filter 24 reject out * * udp route route remote 0
ip filter 31 reject in * * * * * remote 0