blob: 097f60250f2c9ae2f3147a2b86ac8a03c706f365 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
<rule family="ip" table="filter" chain="output" handle="10">
<rule_flags>0</rule_flags>
<expr type="payload">
<dreg>1</dreg>
<offset>9</offset>
<len>1</len>
<base>network</base>
</expr>
<expr type="cmp">
<sreg>1</sreg>
<op>eq</op>
<cmpdata>
<data_reg type="value">
<len>1</len>
<data0>0x00000006</data0>
</data_reg>
</cmpdata>
</expr>
<expr type="payload">
<dreg>1</dreg>
<offset>0</offset>
<len>8</len>
<base>transport</base>
</expr>
<expr type="cmp">
<sreg>1</sreg>
<op>eq</op>
<cmpdata>
<data_reg type="value">
<len>8</len>
<data0>0x16000004</data0>
<data1>0x00000000</data1>
</data_reg>
</cmpdata>
</expr>
</rule>
<!-- nft add rule filter output tcp sequence 0 tcp sport 1024 tcp dport 22 -->
|