From owner-freebsd-questions@FreeBSD.ORG Wed Oct 27 09:34:31 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5BA9C16A4CE for ; Wed, 27 Oct 2004 09:34:31 +0000 (GMT) Received: from orion.frasa.net (orion.frasa.net [195.241.98.153]) by mx1.FreeBSD.org (Postfix) with ESMTP id ADA5543D1D for ; Wed, 27 Oct 2004 09:34:29 +0000 (GMT) (envelope-from bsd@orion.frasa.net) Received: from localhost (orion [127.0.0.1]) by orion.frasa.net (Postfix) with ESMTP id 088395F5; Wed, 27 Oct 2004 11:34:04 +0200 (CEST) Received: from orion.frasa.net ([127.0.0.1]) by localhost (orion.frasa.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 33489-07; Wed, 27 Oct 2004 11:34:01 +0200 (CEST) Received: by orion.frasa.net (Postfix, from userid 1004) id 96EC05F3; Wed, 27 Oct 2004 11:34:01 +0200 (CEST) Date: Wed, 27 Oct 2004 11:34:01 +0200 From: Mark Frasa To: Florian Hengstberger Message-ID: <20041027093401.GA33861@orion.frasa.net> References: Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.4.2.1i X-Virus-Scanned: by amavisd at frasa.net cc: freebsd-questions@freebsd.org Subject: Re: Firewall and nmap X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Mark Frasa List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Oct 2004 09:34:31 -0000 On 2004.10.27 11:26:00 +0000, Florian Hengstberger wrote: > Hi! > > I'm compiled a Kernel using the GENERIC config-file that > comes with the default 5.2.1 installation adding support > for ipfw. > I tried to scan my computer with a linux machine running nmap, > but nmap tells me that the host seems to be down altough I was able > to ping the freebsd-host. > So I flushed all rools for the firewall with ipfw flush (the still > existing default rule enables all trafic because I compiled this in > my kernel, ipfw -c list told me that this is true.) > Anyway, nothing changes, all ports seem to be closed running nmap, > pings are successfull again! > > 1) What's wrong with my configuration? Don't know yet, but what does ipfw show says? Maybe it enabled the /etc/rc.firewall? > 2) I've tried to add all kernel options to this mail using the online > handbook from www.freeebsd.org. I realized that the firewall section > covers now the OpenBSD filter pf. WhatŽs the state of the art? > How do I enable pf under 5.2.1 - package or port? To enable PF put in your firewall: options IPFILTER #ipfilter support These can be put optionally: options IPFILTER_LOG #ipfilter logging options IPFILTER_DEFAULT_BLOCK #block all packets by default I don't think you want the last one yet, so first comment it out. > 3) Is there something similar like nmap or is there a BSD-network scanner, > which usage is recommended? Dunno, i use nmap on my boxes as well. Works great. > > Thanks in advance, > Florian > Your welcome. Mark. > ------------------------------------------------------ > Florian Hengstberger > e0025265@student.tuwien.ac.at > http://stud3.tuwien.ac.at/~e0025265 > ------------------------------------------------------ > > > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"