From owner-freebsd-questions Fri May 17 4:35: 7 2002 Delivered-To: freebsd-questions@freebsd.org Received: from oxe.cs.umu.se (oxe.cs.umu.se [130.239.40.14]) by hub.freebsd.org (Postfix) with ESMTP id 1846C37B409 for ; Fri, 17 May 2002 04:35:01 -0700 (PDT) Received: from gren.cs.umu.se (rfc1413 says tdv94ped@gren.cs.umu.se [130.239.40.187]) by oxe.cs.umu.se (8.8.8/8.8.8) with ESMTP id NAA00989; Fri, 17 May 2002 13:34:53 +0200 (MET DST) Date: Fri, 17 May 2002 13:34:53 +0200 (MEST) From: Paul Everlund To: Patrick Thomas Cc: Subject: Re: quick ipfw ruleset advice needed... In-Reply-To: <20020516194946.W79837-100000@utility.clubscholarship.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 16 May 2002, Patrick Thomas wrote: > > It seems you only allow packets into your computer, but not out. > > Try to use something like: > > > > - Allow you to setup connections. > > allow tcp from [your IP] to any out via ed0 setup > > > > - Allow established connections back in. > > allow tcp from any to [your IP] in via ed0 established > > > > (Exchange ed0 to your own network device.) > > > > Put those lines before the deny all line. > > Exactly. That is what I am asking. How do I do that ? Almost exactly as above. :-) Put those rules in the file you have your other rules in, and test it. Best regards, Paul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message