From owner-freebsd-questions Wed Sep 8 15:54:27 1999 Delivered-To: freebsd-questions@freebsd.org Received: from richardson.apana.org.au (richardson.apana.org.au [203.3.126.216]) by hub.freebsd.org (Postfix) with SMTP id 0864B1578D for ; Wed, 8 Sep 1999 15:54:16 -0700 (PDT) (envelope-from dougy@gargoyle.apana.org.au) Received: from oracle [203.3.126.130] by richardson.apana.org.au [203.3.126.216] with SMTP (MDaemon.v2.7.SP4.T) for ; Thu, 09 Sep 1999 08:45:19 +1000 X-Mailer: SendM@ail V1.09 To: freebsd-questions@FreeBSD.ORG, jneumann@guessrudd.com From: dougy@gargoyle.apana.org.au Subject: Re: FreeBSD PPP Content-Type: text X-MDaemon-Deliver-To: freebsd-questions@FreeBSD.ORG X-Return-Path: dougy@gargoyle.apana.org.au Date: Thu, 09 Sep 1999 08:45:19 +1000 Message-Id: <19990908225418.0864B1578D@hub.freebsd.org> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hi Jason > re: The timeout issue - Congratulations! > The # sign and trailing text on the timeout line must have caused the > line to be ignored and a default of 15 minutes to occur. As far as I > know using the -ddial option does not prevent a timeout from occurring, > it causes an instant redial to occur when the link is dropped (by > timeout or other causes). > well I really don't know much about the theory, but as I recall it was Brian who told me using "ppp -ddial" would force ppp to ignore timeout settings .... certainly seems to have do so here anyway as its been connected for nearly a week continuously with no sign of dropping the link .... not a mention of any re-connection in ppp.log either !!! > re: Firewalls > The site I have listed below has several examples of firewalls and > explanations of what the firewall rules are doing. I used Example1 as a > model to build my firewalls. I had to modify and add rules to satisfy my > needs but all the basics can be found there. You need to understand > some basic tcp/ip concepts such ip addresses and port numbers. You can > use the O'Reilly book Building Internet Firewalls if you feel the need > to get into heavy stuff such parameter lans and bastion hosts. > Thanks for the URL Jason ... I'll have a look around there. I don't think I need anything too fancy at this point ....hopefully there's something basic I can comprehend that will keep some of the brain dead vandals out > Some really simple things you can do to protect yourself are disable > unused services in /etc/inted.conf or wrap them with tcp wrappers by > editing the /etc/hosts.allow text file (FBSD-3.2 or higher). Ahhhh .... now just how do I get to know what are "unused services" .... just a matter of "suck it and see" ?? Is there a "newbie-friendly" explanation of what this stuff does or are the comments sufficiently comprehensible ?? > > This site has good ipfw rule examples. > http://support.metronet.com/~pgilley/freebsd/ipfw/index.html > > Thi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message