From owner-freebsd-questions Tue Jan 4 17:29:47 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mail11.jump.net (mail11.jump.net [207.8.124.20]) by hub.freebsd.org (Postfix) with ESMTP id 424EF14BD7 for ; Tue, 4 Jan 2000 17:29:44 -0800 (PST) (envelope-from kweiss@jump.net) Received: from enigma (ghost.animeniac.com [216.30.96.14]) by mail11.jump.net (8.9.0/) with SMTP id TAA26707 for ; Tue, 4 Jan 2000 19:29:36 -0600 (CST) Message-Id: <4.1.20000104192010.00929100@pop.jump.net> X-Sender: kweiss@pop.jump.net X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 Date: Tue, 04 Jan 2000 19:30:51 -0600 To: freebsd-questions@freebsd.org From: Kevin Weiss Subject: ping and "simple" firewall conflict with internal IP's Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I just added the following ipfw command to my "simple" firewall: $fwcmd add pass icmp from any to any I can't ping out until I comment out: $fwcmd add deny all from 192.168.0.0:255.255.0.0 to any via ${oif} $fwcmd add deny all from any to 192.168.0.0:255.255.0.0 via ${oif} My internal hosts are using the 192.168.x.x addresses, but is there a way to allow the ping command while denying any external hosts with the 192.168.x.x addresses? Thanks in advance, Kevin Weiss kweiss@jump.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message