From owner-freebsd-questions Tue Sep 18 18:39:45 2001 Delivered-To: freebsd-questions@freebsd.org Received: from courier.netrail.net (courier.netrail.net [205.215.10.53]) by hub.freebsd.org (Postfix) with ESMTP id 433BF37B40B for ; Tue, 18 Sep 2001 18:39:40 -0700 (PDT) Received: by courier.netrail.net (Postfix, from userid 5408) id ABAB8C4; Tue, 18 Sep 2001 21:39:39 -0400 (EDT) Date: Tue, 18 Sep 2001 21:39:39 -0400 From: "Christian S ." To: klein brock Cc: questions@freebsd.org Subject: Re: FIREWALL REALLY NEED HELP Message-ID: <20010918213939.S88158@netrail.net> References: <20010918201723.O88158@netrail.net> <20010919005758.74961.qmail@web20106.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20010919005758.74961.qmail@web20106.mail.yahoo.com>; from getzz1@yahoo.com on Tue, Sep 18, 2001 at 05:57:58PM -0700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hmm.. dunno, right offhand.. perhaps it's defaulting to just blocking IP packets (Which theoretically encompass all packets anyways.. I'm not too sure about ICMP tho.. anyone? Bueller? Bueller?) Is it working? On Tue, Sep 18, 2001 at 05:57:58PM -0700, klein brock babbled: > Delivered-To: cschreiber@netrail.net > Date: Tue, 18 Sep 2001 17:57:58 -0700 (PDT) > From: klein brock > Subject: Re: FIREWALL REALLY NEED HELP > To: "Christian S ." > Cc: questions@freebsd.org > In-Reply-To: <20010918201723.O88158@netrail.net> > > # ipfw add deny all from 209.1.4.0/24 to any via any > 51900 deny ip from 209.1.4.0/24 to any via any > > why it comes out: > > 51900 deny ip from 209.1.4.0/24 to any via any > > instead of: > > 51900 deny all from 209.1.4.0/24 to any via any > > ? > > Thank you > > --- "Christian S ." wrote: > > try: > > > > ipfw add deny all from 209.1.4.0/24 to any via any. > > > > This should take care of most of your woes.. > > > > Chrsitain > > > > On Tue, Sep 18, 2001 at 05:13:02PM -0700, klein > > brock babbled: > > > Delivered-To: cschreiber@netrail.net > > > Delivered-To: freebsd-questions@freebsd.org > > > Date: Tue, 18 Sep 2001 17:13:02 -0700 (PDT) > > > From: klein brock > > > Subject: FIREWALL REALLY NEED HELP > > > To: questions@freebsd.org > > > List-ID: > > > List-Archive: (Web > > Archive) > > > List-Help: > > (List > > Instructions) > > > List-Subscribe: > > > > > > List-Unsubscribe: > > > > > > X-Loop: FreeBSD.ORG > > > Precedence: bulk > > > > > > Hi, > > > > > > someone abuse my server... and i want to block ip > > > '209.1.4.*' > > > > > > ipfw add 00001 add deny ip from 209.1.4.0/24 to > > any > > > > > > it doesn't block that ip ... any suggestion what > > > should i do ? > > > > > > Thank you in advance > > > > > > __________________________________________________ > > > Terrorist Attacks on U.S. - How can you help? > > > Donate cash, emergency relief information > > > > > > http://dailynews.yahoo.com/fc/US/Emergency_Information/ > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > > with "unsubscribe freebsd-questions" in the body > > of the message > > ---end quoted text--- > > > > -- > > Christian Schreiber, Netrail Network Security > > Engineer > > -- > > "They that can give up essential liberty to obtain a > > little temporary > > safety deserve neither liberty nor safety." > > -- Benjamin Franklin, 1759 > > > > > __________________________________________________ > Terrorist Attacks on U.S. - How can you help? > Donate cash, emergency relief information > http://dailynews.yahoo.com/fc/US/Emergency_Information/ ---end quoted text--- -- Christian Schreiber, Netrail Network Security Engineer -- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- Benjamin Franklin, 1759 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message