From owner-freebsd-questions  Thu Sep 23  9:34:38 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from wally.bellnetworks.net (www.bellnetworks.net [216.214.153.70])
	by hub.freebsd.org (Postfix) with ESMTP id 3650214E07
	for <freebsd-questions@FreeBSD.ORG>; Thu, 23 Sep 1999 09:34:35 -0700 (PDT)
	(envelope-from jerry@wally.bellnetworks.net)
Received: from localhost (jerry@localhost)
	by wally.bellnetworks.net (8.9.3/8.9.3) with ESMTP id MAA31329;
	Thu, 23 Sep 1999 12:33:01 -0400 (EDT)
	(envelope-from jerry@wally.bellnetworks.net)
Date: Thu, 23 Sep 1999 12:33:01 -0400 (EDT)
From: Jerry Bell <jerry@wally.bellnetworks.net>
To: Monte Westlund <montejw@memes.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: firewall
In-Reply-To: <3.0.5.32.19990923090434.007bd100@memes.com>
Message-ID: <Pine.BSF.4.10.9909231231270.30816-100000@wally.bellnetworks.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

have a look at http://www.bellnetworks.net/cs/showrec.php3?story_id=3  
It has a good example of an rc.firewall script.

Jerry

On Thu, 23 Sep 1999, Monte Westlund wrote:

> Hello,
> I have just gotten the duty ;) of administering a FreeBSD box that is
> working as a firewall to a windows lan. The FreeBSD box has 2 NIC's, one
> that is wired to a DSL modem to get out to the world wild internet.
> 
> The windows lan is hooked up to the second NIC. I am having a bit of a time
> getting the 'firewall' to work. Using IPFW.
> 
> My problem is that I have to add the line 'allow ip from any to any' to the
> end of the ipfw list. I usually run 'ipfw show' and then manually add the
> line to the end of the list using 'ipfw add 2110 allow ip from any to any'.
> This just doesn't seem right to have to do this.
> 
> I haven't been able to find any real usable examples of rc.firewall
> anywhere. Can someone let me know where I can find some examples of
> rc.firewall?
> 
> Thanks,
> Monte Westlund
> 
> 
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
> 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message