protocol: [not] protocol-name | protocol-number
An IP protocol specified by number or name (for a complete list
see /etc/protocols), or one of the following keywords:
ip4 | ipv4
Matches IPv4 packets.
ip6 | ipv6
Matches IPv6 packets.
ip | all
Matches any packet.
The ipv6 in proto option will be treated as inner protocol. And,
the ipv4 is not available in proto option.
The { protocol or ... } format (an or-block) is provided for con-
venience only but its use is deprecated.
例:
ipfw add allow gre from any to any
阅读(2559) | 评论(0) | 转发(0) |
