Firewall d block ICMP for all allowing only few subnets

public (active)
target: default
icmp-block-inversion: no
interfaces: ens192
sources:
services:
ports:
protocols:
forward: no
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
rule family=“ipv4” source address=“192.168.0.0/24” port port=“13660” protocol=“tcp” accept
rule family=“ipv4” source address=“10.2.0.0/24” service name=“ntp” accept
rule family=“ipv4” source address=“192.168.0.0/24” protocol value=“icmp” accept
rule family=“ipv4” source address=“172.168.0.0/24” protocol value=“icmp” accept
rule family=“ipv4” source not address=“172.168.0.0/24” protocol value=“drop” accept

I have only 172 network works. How can I get for example two different network works while block all others for ping (ICMP)? Thank you

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.