Date: Tue, 26 Feb 2002 13:43:22 +0200 From: <system@soft.lv> To: "Adam@junik.lv" <adam@junik.lv> Cc: <freebsd-security@freebsd.org> Subject: Re: ssh and ipfw Message-ID: <01bf01c1beba$cbd0d560$8501a8c0@bis.lv> References: <003101c1beb8$b196e240$06cdb6d5@junik.lv>
next in thread | previous in thread | raw e-mail | index | archive | help
----- Original Message -----
I'm using ipfw on two machines, both running FreeBSD 4.5 RELEASE.
At both machines the following rules apply:
ipfw add pass tcp from A to B 22
ipfw add pass tcp form B to A 22
A and B being the respective IP addresses of the machines!
when you establish connection from A -> B 22 first rule allow access,
then B 22 answers -> A and ipfw blocks this connection.
In /etc/sh.firewall is good example how to setup firewall. You must add
rules:
IP A
${fwcmd} add allow from any to any established
${fwcmd} add allow from A to B 22 setup
IP B
${fwcmd} add allow from any to any established
${fwcmd} add allow from B to A 22 setup
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01bf01c1beba$cbd0d560$8501a8c0>