eval.rules

# rules for client A (IP: 192.168.0.1)
1: TCP 192.168.0.1:501 -> 192.168.0.2:12345 *
2: UDP 192.168.0.1:1234 -> 192.168.0.3:any *
3: TCP any:1235 -> 192.168.0.2:65535 *
4: UDP 192.168.0.1:[500-510] -> 192.168.0.3:any *
5: UDP 192.168.0.1:1234 -> !192.168.0.2:any *
6: TCP any:1235 -> 192.168.0.3:!65535 *
7: UDP 192.168.0.1:![500-510] -> 192.168.0.2:any *
8: TCP 192.168.0.1:[500-510] <> 192.168.0.3:any *
9: IP 192.168.0.1:[500-510] <> 192.168.0.2:any *
10: ICMP 192.168.0.1:[500-510] <> 192.168.0.2:any *

# NOTE: rules containing "any" as source IP are valid for all clients
# rules for client B (IP: 192.168.0.2)
11: TCP 192.168.0.2:501 -> 192.168.0.1:12345 *
12: UDP 192.168.0.2:1234 -> 192.168.0.3:any *
13: UDP 192.168.0.2:[500-510] -> 192.168.0.3:any *
14: UDP 192.168.0.2:1234 -> !192.168.0.1:any *
15: UDP 192.168.0.2:![500-510] -> 192.168.0.1:any *
16: TCP 192.168.0.2:[500-510] <> 192.168.0.3:any *
17: IP 192.168.0.2:[500-510] <> 192.168.0.1:any *
18: ICMP 192.168.0.2:[500-510] <> 192.168.0.1:any *

# rules for client C (IP: 192.168.0.3)
21: TCP 192.168.0.3:501 -> 192.168.0.2:12345 *
22: UDP 192.168.0.3:1234 -> 192.168.0.1:any *
23: UDP 192.168.0.3:[500-510] -> 192.168.0.1:any *
24: UDP 192.168.0.3:1234 -> !192.168.0.2:any *
25: UDP 192.168.0.3:![500-510] -> 192.168.0.2:any *
26: TCP 192.168.0.3:[500-510] <> 192.168.0.1:any *
27: IP 192.168.0.3:[500-510] <> 192.168.0.2:any *
28: ICMP 192.168.0.3:[500-510] <> 192.168.0.2:any *