Thank you for the input but that still prints an (yet another) error:
Error: syntax error, unexpected !=, expecting ')'
On 06/10/2020 05:42, Yuval Steuer wrote:
((tcp sport != { 80, 443, 993, 5228 }) or (udp sport != 19302) and
(ip6 saddr @g_6))
On Mon, 5 Oct 2020 at 16:02 ѽ҉ᶬḳ℠ <vtol@xxxxxxx <mailto:vtol@xxxxxxx>>
wrote:
I am trying to get a granular logging rule going, combining tcp
and udp
sports for ip6 saddr but somehow failing:
tcp sport != { 80, 443, 993, 5228 } udp sport != 19302 ip6 saddr @g_6
log flags all prefix "G_C :" continue
-> Error: conflicting protocols specified: tcp vs. udp
ip6 saddr @g_6 tcp sport != { 80, 443, 993, 5228 } | udp sport !=
19302
log flags all prefix "G_C :" continue;
-> Error: syntax error, unexpected '|', expecting newline or semicolon
