Date: Sat, 22 Jul 2006 12:40:34 -0500 From: Dan Nelson <dnelson@allantgroup.com> To: Pelekh Volodya <vpeleh@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: IPFW Time-Range Message-ID: <20060722174034.GD22820@dan.emsphone.com> In-Reply-To: <44C24658.5060308@gmail.com> References: <44C24658.5060308@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Jul 22), Pelekh Volodya said: > Hi > My name is Volodya, i'am from Ukraine > I have a little question, > do you plan to add time-range in ipfw? > Something like in Cisco > thanks > wait for answer One way to do what you want is to put your time-sensitive rules in a separate set: ipfw add 500 set 1 reset ip from any to any dst-port 554 // block realaudio streams Then use cron to enable/disable them during your timerange: 0 8 * * * root ipfw set enable 1 0 18 * * * root ipfw set disable 1 You can run "ipfw -S list" to see which sets are active at any time. It would be nice to have this built into ipfw, though. -- Dan Nelson dnelson@allantgroup.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060722174034.GD22820>