From owner-freebsd-net Fri Nov 20 13:10:31 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id NAA18363 for freebsd-net-outgoing; Fri, 20 Nov 1998 13:10:31 -0800 (PST) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from mathserv.mps.ohio-state.edu (mathserv.mps.ohio-state.edu [128.146.111.31]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id NAA18341 for ; Fri, 20 Nov 1998 13:10:21 -0800 (PST) (envelope-from alden@math.ohio-state.edu) Received: from math.mps.ohio-state.edu (math.mps.ohio-state.edu [128.146.111.30]) by mathserv.mps.ohio-state.edu (8.9.1a/8.9.1) with ESMTP id QAA19431 for ; Fri, 20 Nov 1998 16:09:52 -0500 (EST) From: Dave Alden Received: (from alden@localhost) by math.mps.ohio-state.edu (8.9.1a/8.9.1) id QAA06927 for freebsd-net@freebsd.org; Fri, 20 Nov 1998 16:09:47 -0500 (EST) Date: Fri, 20 Nov 1998 16:09:47 -0500 (EST) Message-Id: <199811202109.QAA06927@math.mps.ohio-state.edu> To: freebsd-net@FreeBSD.ORG Subject: bridging hints? Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, I'm planning on using a FreeBSD box as our departmental firewall. I just started playing around with it and have a box configured with 2 Intel EtherExpress 100+ cards, our LAN on one and a workstation (call 'wkstn') on the other. I'm trying to learn ipfw, so I setup the FreeBSD box as a "client" firewall. I then did: ipfw add deny tcp from any to wkstn This works as expected. But if I try to just turn of certain ports with: ipfw add deny tcp from any to wkstn 1-1024 it doesn't work as I would expect (it allows me to telnet to the machine). Can someone tell me what I'm doing wrong? :-) ...thnx, ...dave ps I have set net.link.ether.bridge_ipfw=1. :-) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message