From owner-freebsd-questions Wed Jul 18 7: 1:27 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.cult.cu (mail.cult.cu [169.158.120.2]) by hub.freebsd.org (Postfix) with ESMTP id 0BF8337B403 for ; Wed, 18 Jul 2001 07:01:05 -0700 (PDT) (envelope-from admin@atenas.cult.cu) Received: from mail by mail.cult.cu with local-bsmtp (Exim 3.03 #2) id 15Mrsn-000J00-00 for freebsd-questions@freebsd.org; Wed, 18 Jul 2001 10:00:57 -0400 Received: from [169.158.120.178] (helo=mail.atenas.cult.cu) by mail.cult.cu with esmtp (Exim 3.03 #2) id 15Mrsk-000IzV-00 for freebsd-questions@freebsd.org; Wed, 18 Jul 2001 10:00:55 -0400 Received: from mail.atenas.cult.cu ([169.158.120.179] helo=proxy.atenas.cult.cu) by mail.atenas.cult.cu with smtp (Exim 3.22 #2) id 15Mrvi-0000af-00 for freebsd-questions@freebsd.org; Wed, 18 Jul 2001 10:03:58 -0400 From: Manolo Valdes To: freebsd-questions@freebsd.org Subject: Re: Question about ipfw Date: Wed, 18 Jul 2001 09:55:30 -0400 X-Mailer: KMail [version 1.0.28] Content-Type: text/plain; charset="iso-8859-1" References: <4917.010717@maryno.net> <3B554CF6.2D16B769@i-clue.de> In-Reply-To: <3B554CF6.2D16B769@i-clue.de> MIME-Version: 1.0 Message-Id: <01071810003800.00399@proxy.atenas.cult.cu> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > > [Uu][Nn][Kk][Nn][Oo][Ww][Nn]) > > # ;; > > #*) > > if [ -r "${firewall_type}" ]; then > > ${fwcmd} ${firewall_flags} ${firewall_type} > > fi All this lines have been added to the default rc.firewall so if you did not added them, someone did. greetings Manolito ############################################################################ > > ${fwcmd} add divert natd ip from 192.168.1.0 to any out via ed1 > > ${fwcmd} add divert natd ip from any to *.*.*.* in via ed1 > > ${fwcmd} add divert all from any to any via ed1 > > > > ${fwcmd} -q add 1 allow tcp from any to *.*.*.* 80 in via ed1 > > ${fwcmd} -q add 2 allow tcp from *.*.*.* to *.*.*.* 20,21 in via ed1 > > ${fwcmd} -q add 3 allow tcp from *.*.*.* to *.*.*.* 22 in via ed1 > > ${fwcmd} -q add 4 allow udp from any to any 53 > > ${fwcmd} -q add 5 allow tcp from 192.168.1.0 to any 20,21,22,139 in via ed1 > > ${fwcmd} -q add 51 reset tcp from any to *.*.*.* 1-1024 in via ed1 > > ${fwcmd} -q add 52 drop udp from any to any 1-1024 in via ed1 > > ${fwcmd} -q add 53 unreach port tcp from any to *.*.*.* 1025-65535 in setup ############################################################################# > > ;; > > esac > > ========================================= > > > > -- > > Best regards, > > Vasily > > vasily@maryno.net > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > -- > Freundliche Grüße aus Waiblingen > > Christoph Sold > -- > Systemadministrator, i-clue GmbH, Endersbacher Str. 57, 71334 Waiblingen > Fon: (0 71 51) 9 59 01-12, Fax: (0 71 51) 9 59 01-55, Mail: so@i-clue.de > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message