BSD use SYN,ACK filter to catch autottl

2025-12-30 03:18:07 +03:00 · 2024-03-09 12:45:17 +03:00
parent 48850b5f4e
commit 5ef3fb9e97
4 changed files with 31 additions and 16 deletions
--- a/blockcheck.sh
+++ b/blockcheck.sh
@@ -364,8 +364,8 @@ pktws_ipt_prepare()
 			;;
 		ipfw)
 			IPFW_ADD divert $IPFW_DIVERT_PORT tcp from me to any $1 proto ip${IPV} out not diverted not sockarg
-			# this redirects all incoming traffic to the port, do not use it in real life !
-			IPFW_ADD divert $IPFW_DIVERT_PORT tcp from any $1 to me proto ip${IPV} in not diverted not sockarg
+			# for autottl mode
+			IPFW_ADD divert $IPFW_DIVERT_PORT tcp from any $1 to me proto ip${IPV} tcpflags syn,ack in
 			;;
 	esac
 }