Skip to content

Instantly share code, notes, and snippets.

@laduke

laduke/rules.md

Last active December 17, 2020 17:39
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save laduke/40371a0ee67d88757e56ff8565d65eef to your computer and use it in GitHub Desktop.
Save laduke/40371a0ee67d88757e56ff8565d65eef to your computer and use it in GitHub Desktop.
Download ZIP
zerotier rules engine - examples
Raw
rules.md

Whitelist by port

drop
  not ethertype ipv4
  and not ethertype arp
  and not ethertype ipv6
;

accept
     dport 6445
  or sport 6445
  or dport 28012-28013
  or sport 28012-28013
;

break                     
  chr tcp_syn             
  and not chr tcp_ack 
;

accept;

Minimum Viable RDP - Windows Remote Desktop

accept ethertype arp;
accept dport 3389 or sport 3389 and ipprotocol tcp;
drop;
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment