Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 22 Nov 2004 09:29:05 -0800
From:      Erick Mechler <emechler@techometer.net>
To:        Simon Fishley <simon@millen.co.za>
Cc:        freebsd-stable@freebsd.org
Subject:   Re: Newbie Port Filter Question on 4.10stable
Message-ID:  <20041122172905.GG69324@techometer.net>
In-Reply-To: <C6A62C455624DA4C9817D3D71ED57CF787C904@millen01.millenniumsa.co.za>
References:  <C6A62C455624DA4C9817D3D71ED57CF787C904@millen01.millenniumsa.co.za>

next in thread | previous in thread | raw e-mail | index | archive | help
:: Can anyone point me to a clear resource on what I should do to start, stop
:: and flush the port filter rules and whether or not I was working in the
:: correct place to begin with.

Always start with the Handbook:
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html

Then, the list archives (specifically this thread that started on the 20th 
on -security):

http://docs.freebsd.org/cgi/getmsg.cgi?fetch=56843+0+archive/2004/freebsd-security/20041121.freebsd-security

Best practice would be to take what you want out of /etc/rc.firewall and 
build your own ruleset in another file.  That way you can't accidentally 
overwrite it the next time you run mergemaster.

Cheers - Erick



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20041122172905.GG69324>