1 pass in proto tcp all flags S keep state(icmp-head icmpredir) 2 block out proto icmp all icmp-type redir group icmpredir 3
Indexes created Mon Sep 29 21:09:56 GMT 2025
