
#-----------------------------------------------------------------------
# DESCRIPTION
#-----------------------------------------------------------------------
#
# broadcast (Ports ALL TCP UDP)
# Ignore or deny universal broadcasts (to 255.255.255.255) 
#
#-----------------------------------------------------------------------
# CHANGES
#-----------------------------------------------------------------------
#
# 2001-02-04  Edwin ten Brink <edwin@privateer.student.utwente.nl>
#             Added mode 3 to include the script in paranoid mode
#             Cosmetic change in visualisation
# 2001-01-18  Edwin ten Brink <edwin@privateer.student.utwente.nl>
#             Initial creation
#
#-----------------------------------------------------------------------
# MODULE CONFIGURATION
#-----------------------------------------------------------------------
#
#m# 123
#a# deny ignore
#i# 
#n# broadcast
#t# clients
#
#   |--------------------------------------------------------------------|
#d# broadcast (Ports ALL TCP UDP)
#d# Ignore or deny universal broadcasts (to 255.255.255.255) 
#   |--------------------------------------------------------------------|
#
#-----------------------------------------------------------------------
# START OF MODULE CODE
#-----------------------------------------------------------------------

module_name="broadcast"              # module name used in options
module_type="clients"                # the module type (clients, servers, etc.)
service_name="Universal broadcasts"  # displayed on-screen

for action in ignore deny accept
do
	case $action in
		accept|ignore)
				action_log_msg="$LOG_MSG"; action_log="$LOG";;
		deny)	action_log_msg="(logged)"; action_log="-l"  ;;
	esac

	for host in `Option_Value $action $INTOPT $module_name $module_type`
	do
		case $action in
			ignore|deny)
				echo "Deny $INTOPT 255.255.255.255 $service_name <- $host $action_log_msg"
				ipchains -A $INCHAIN -j DENY -p tcp -s $host -d 255.255.255.255 $action_log
				ipchains -A $INCHAIN -j DENY -p udp -s $host -d 255.255.255.255 $action_log
				;;
		esac
	done
done
unset module_name module_type service_name
unset action action_log_msg action_log host

