Is there a way with pf to block specific type of packets larger than specific size?
Asked
Active
Viewed 158 times
1 Answers
3
AFAIC, pf can't do this. You can use ipfw's iplen option:
iplen len-list
Matches IP packets whose total length, including header and data,
is in the set len-list, which is either a single value or a list
of values or ranges specified in the same way as ports.
Eugene Yarmash
- 2,433
- 5
- 34
- 54