Date: Thu, 7 Jun 2001 18:05:37 +0200 From: "Marcel Dijk" <nascar24@home.nl> To: <freebsd-security@FreeBSD.ORG> Subject: IPFW rules > ports still open! Message-ID: <02ab01c0ef6b$b1002610$0900a8c0@windows> References: <Pine.BSF.4.30_heb2.09.0106061220000.50496-100000@slis-two.lis.fsu.edu><009e01c0ef55$da422340$9201a8c0@home.net> <1569370004.20010607180037@mail.spbnit.ru><0e4001c0ef5c$034299e0$241da8c0@ke.balt.net> <20010607190013.4a57045e.nikolaj@mail.spbnit.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, i have tried to make a good firewall but I have some problems. This is my rc.firewall.rules file. add 500 allow all from 192.168.0.0/16 to any add 525 allow all from any to 192.168.0.0/16 #add 575 allow ip from any to MY_IP #add 600 allow ip from MY_IP to any add 615 allow tcp from any to MY_IP 22,5618,10000 add 625 allow tcp from MY_IP to any add 650 allow udp from any to MY_IP add 700 allow udp from MY_IP to any add 800 allow icmp from any to MY_IP add 750 allow icmp from MY_IP to any (MY_IP is my internet IP address. I have blocked it for abvious reasons) The problem is that I can't access the services that I have allowed. For example I can't access the service that's behind port 22 on MY_IP. Why is this? If I allow IP from any to MY_IP and allow ip from MY_IP to any all ports are open. And that;s just what I don't want. I hope you guys fill me and can help me. Thanks, I can't seem to solve this one. Marcel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?02ab01c0ef6b$b1002610$0900a8c0>