From owner-freebsd-questions  Wed Apr 12 22: 6:54 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from indigo.dreamfire.net (indigo.dreamfire.net [207.113.154.29])
	by hub.freebsd.org (Postfix) with ESMTP id 138BB37BBA9
	for <questions@freebsd.org>; Wed, 12 Apr 2000 22:06:53 -0700 (PDT)
	(envelope-from sean@dreamfire.net)
Received: from valiant.dreamfire.net (valiant [24.11.227.21])
	by indigo.dreamfire.net (Postfix) with ESMTP id EBAB19452
	for <questions@freebsd.org>; Wed, 12 Apr 2000 22:06:51 -0700 (PDT)
Received: by valiant.dreamfire.net (Postfix, from userid 1000)
	id 4487932E; Wed, 12 Apr 2000 22:04:33 -0700 (PDT)
Date: Wed, 12 Apr 2000 22:04:32 -0700
From: Sean-Paul Rees <sean@dreamfire.net>
To: questions@freebsd.org
Subject: Refuse versus Filter
Message-ID: <20000412220432.A1974@dreamfire.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0.1i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

G'day,

I have several ipfw rules to protect some potentially vulnerable services
from being exploited from the outside. However, when I do a nmap, all the
ports that I block show up as filtered.

Is there a way to get a "Connection refused" effect with ipfw instead of a
connection just hanging?

I run 4.0-STABLE/i386.

-- 
Cheers,
Sean



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message