From owner-freebsd-questions  Tue Apr  9 11:46:13 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mail.hal-pc.org (mail.hal-pc.org [206.180.145.133])
	by hub.freebsd.org (Postfix) with ESMTP id 954CB37B416
	for <freebsd-questions@freebsd.org>; Tue,  9 Apr 2002 11:46:10 -0700 (PDT)
Received: from [204.52.135.14] (HELO Debug)
  by mail.hal-pc.org (CommuniGate Pro SMTP 3.5.6)
  with SMTP id 7659264; Tue, 09 Apr 2002 12:46:09 -0600
To: jmire@lsuhsc.edu
Cc: freebsd-questions@freebsd.org
From: cravey@hal-pc.org
Subject: RE: ipfw config to only allow gif tunnels.
Date: Tue, 9 Apr 2002 18:46:10 GMT
X-Mailer: Endymion MailMan Standard Edition v3.0.16
Message-ID: <auto-000007659264@mail.hal-pc.org>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Sorry, that doesn't seem to work unless you're trying to firewall the traffic
coming down the tunnel with the tunnel already established. Any other suggestions? 

Thanks.

-Stephen


> try something like:
> 
> ipfw add 00122 allow ip from a.b.c.d to me via gif0
> ipfw add 00124 allow ip from me to a.b.c.d via gif0
> 
> -- 
> John Mire: jmire@lsuhsc.edu                Network Administration
> 318-675-5434              LSU Health Sciences Center - Shreveport
> 
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message