From owner-freebsd-questions Fri Mar 28 00:07:27 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id AAA26837 for questions-outgoing; Fri, 28 Mar 1997 00:07:27 -0800 (PST) Received: from gatekeeper.barcode.co.il (gatekeeper.barcode.co.il [192.116.93.17]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id AAA26825 for ; Fri, 28 Mar 1997 00:07:21 -0800 (PST) Received: (from nadav@localhost) by gatekeeper.barcode.co.il (8.7.5/8.6.12) id LAA13776; Fri, 28 Mar 1997 11:05:43 +0300 (IDT) Date: Fri, 28 Mar 1997 11:05:42 +0300 (IDT) From: Nadav Eiron To: Ozcar Cortez cc: questions@freebsd.org Subject: Re: IPFW firewalls In-Reply-To: <3.0.1.32.19970327172754.006cdf24@popper.vt.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk On Thu, 27 Mar 1997, Ozcar Cortez wrote: > I am currently configuring a firewall and trying to set the rules... > If I add an "allow all from any to any" I can log onto the system but I > can't find any other help on how to add more rules... Can anyone help? Does > anyone have a sample ipfw rules file? You can look at rc.firewall for examples. However, configuring a firewall is not just knowing how to write the rules, but also deciding on a security policy you want to implement. No one can help you if you don't know what you want the firewall to do. The best would be to get yourself a good book on Internet security. I have: "Firewalls and Internel Security - Repelling the Wily Hacker" by Cheswick & Bellovin, Addison-Wesley, ISBN: 0-201-63357-4. There are many others as well. > > Thanks > > Ozcar Cortez > Nadav