使用 pf 阻止大于特定大小的数据包

Question

据我所知，pf无法做到这一点。您可以使用ipfw的iplen选项：

 iplen len-list
         Matches IP packets whose total length, including header and data,
         is in the set len-list, which is either a single value or a list
         of values or ranges specified in the same way as ports.

Answer 1

据我所知，pf无法做到这一点。您可以使用ipfw的iplen选项：

 iplen len-list
         Matches IP packets whose total length, including header and data,
         is in the set len-list, which is either a single value or a list
         of values or ranges specified in the same way as ports.

使用 pf 阻止大于特定大小的数据包

答案1

相关内容