IPFW Configuration

• Previous message: Benjamin Close: "VMWare3 -Current Raw Device"
• Next in thread: Philip Payne: "RE: IPFW Configuration"
• Maybe reply: Philip Payne: "RE: IPFW Configuration"
• Reply: JJB: "RE: IPFW Configuration"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Wed, 04 Aug 2004 21:59:47 -0400
To: freebsd-questions@freebsd.org

Hello, I am sort of a newbie to IPFW for FreeBSD-5.2.1. I have never
used it and need some help with the configuration. Ok here goes if
anyone can help.

I compiled IPFIREWALL into the kernel with the options to DEFAULT TO
ACCEPT ALL and the VERBOSE=50 option. With the support for IPFW in the
kernel I then added firewall_enable=off to the rc.conf (with some other
options that are commented out at the moment). The reason for having the
firewall off right now is because i was told that rc.firewall in /etc
needed to be configured for my network card (or IP addresses) before it
will be able to work. My box is located at a datacebter and my box is
allocated with about 90 IP addresses (and also the main server IP which
was given to me when i first purchased the line). I would like to know
how to configure /etc/rc.firewall to support my MAIN ip and also how to
make sure the other IPS added to my box are recognized and protected by
the firewall.
Also I noticed in rc.firewall there are different modes to put the
firewall in like simple mode, client mode, etc. (different firewall
powers i guess). It would be greatly appreciated if someone can show me
how to configure ipfw. I could not thank anyone more for the future help
i might recieve on this issue.

If you guys need a copy of rc.conf or rc.firewall in order to help just
email me and i will provide an attachment.

Thamks in advance

Regards,
Jonathan
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"

• Previous message: Benjamin Close: "VMWare3 -Current Raw Device"
• Next in thread: Philip Payne: "RE: IPFW Configuration"
• Maybe reply: Philip Payne: "RE: IPFW Configuration"
• Reply: JJB: "RE: IPFW Configuration"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: ipfw with NAT and ARP ... > But, I wont so a simple firewall and for this reason, first I want to ... > ipfw add divert natd all from any to any via xl1 ... thats the configuration of the rest of my ... There are kernel options which control whether IPFW is ... (freebsd-questions) ipfw with NAT and ARP ... ipfw add divert natd all from any to any via xl1 ... When testing "ping" from external to external IP-Adress of my firewall, ... After restarting system with above configuration of icmp-protocol no ... "ipfw add allow all from any to any" ping-request get an answer. ... (freebsd-questions) Re: Linux firewall vs Windows and Hardware based firewalls ... > What are the advantages of a linux firewall over something like Windows ... support DNS caching or VPN. ... The second supported DNS caching and VPN and was more secure through it's use ... transparent to the end user configuration. ... (Debian-User) Re: Need pcAnywhere host behind SBS Basic RRAS ... They won't give you tech support unless they have the ability ... NAT/Basic Firewall screen. ... >> address for that PC in the DHCP configuration and I've gotten as far as ... (microsoft.public.windows.server.sbs) ipfw troubles ... I'm having some difficulty getting ipfw to work properly. ... NAT, DHCP and backup DNS, and acts as a connector between the internal LAN ... Jul 2 16:30:53 firewall last message repeated 14 times ... otherwise stateless ipfw configuration. ... (freebsd-questions)