ipfw2
From: Vladimir V. Khramtsov (vkhramtsov_at_kompass.by)
Date: 03/23/05
- Previous message: albi_at_scii.nl: "Re: 2 newb questions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Wed, 23 Mar 2005 10:07:30 +0200 To: freebsd-newbies@freebsd.org
Hello,
I would like to recompile my system with ipfw2 default to deny.
I have local net behind of my freebsd, and I want to pass all packets
from this subnet to Internet, except netbios (135-139 udp and tcp). So
I think firewall rule can be like this add allow tcp from
xxx.xxx.xxx.xxx/24 to any "{not 135-139}" (and one more for udp).
Is it rule correct?
P.S. I have to maintain default to deny firewall.
-- Best regards, Vladimir _______________________________________________ freebsd-newbies@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-newbies To unsubscribe, send any mail to "freebsd-newbies-unsubscribe@freebsd.org"
- Previous message: albi_at_scii.nl: "Re: 2 newb questions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
- Re: Cant access secure Web pages
... Sharing and Firewall co-exist. ... As far as I can tell the combination of Internet
Sharing and Firewall, ... 02050 allow tcp from any to any out ... (uk.comp.sys.mac) - RE: IM Programs
... want to block these ports. ... you don't need an explicit deny for the
other ports. ... Access-list 101 deny any tcp any any eq 5000 ... >Now, when
applying these to your firewall, make sure the number ... (Security-Basics) - Re: IPFW: Blocking me out. How to debug?
... slow down and deny packets to buffer overflow enabled daemons ... allow tcp
from any to any in established ... add allow udp from any 33434-34458 to any out ...
add allow tcp from any to any https in setup ... (FreeBSD-Security) - switching over from old tun0 to new fxp0, problem doing remotely
... My server has been stuck using a dialup link with demon all these years ...
So what would be the correct route command to do to bring up fxp0 as the ... 01200 deny
log ip from 10.0.0.0/16 to any in recv tun0 ... 02900 allow tcp from any to 158.152.36.32
80 setup ... (comp.unix.bsd.freebsd.misc) - Re: IPFW - Allowed but Denied is shown in my logs
... >>packets and yet I am not experiencing some problems in my emails and ...
$CMD 00010 allow all from any to any via lo0 ... $CMD 00240 allow tcp from me to any out
via $IFN setup keep-state uid root ... #* DENY and LOG everything else thats trying
to get out. ... (freebsd-questions)
