Date: Thu, 7 Jun 2001 12:20:01 -0400 From: "Christian S ." <cschreiber@netrail.net> To: Marcel Dijk <nascar24@home.nl> Cc: freebsd-security@FreeBSD.ORG Subject: Re: IPFW rules > ports still open! Message-ID: <20010607122001.B72448@netrail.net> In-Reply-To: <02ab01c0ef6b$b1002610$0900a8c0@windows>; from nascar24@home.nl on Thu, Jun 07, 2001 at 06:05:37PM %2B0200 References: <Pine.BSF.4.30_heb2.09.0106061220000.50496-100000@slis-two.lis.fsu.edu><009e01c0ef55$da422340$9201a8c0@home.net> <1569370004.20010607180037@mail.spbnit.ru><0e4001c0ef5c$034299e0$241da8c0@ke.balt.net> <20010607190013.4a57045e.nikolaj@mail.spbnit.ru> <02ab01c0ef6b$b1002610$0900a8c0@windows>
next in thread | previous in thread | raw e-mail | index | archive | help
On pain of being relatively obvious, do you have those particular daemons running (such as sshd, etc?) What's the output of tcpdump when you do it? What errors are you recieving? What's the output of sockstat? Have you done an ipfw -t show to see what rules are getting hit/dropped/acked? This should help start the troubleshooting process, sorry I can't be more precise.. :/ Christian On Thu, Jun 07, 2001 at 06:05:37PM +0200, Marcel Dijk babbled: > Delivered-To: cschreiber@netrail.net > Delivered-To: freebsd-security@freebsd.org > From: "Marcel Dijk" <nascar24@home.nl> > To: <freebsd-security@FreeBSD.ORG> > Subject: IPFW rules > ports still open! > Date: Thu, 7 Jun 2001 18:05:37 +0200 > X-Priority: 3 > X-MSMail-Priority: Normal > X-Mailer: Microsoft Outlook Express 5.00.2919.6700 > X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 > List-ID: <freebsd-security.FreeBSD.ORG> > List-Archive: <http://docs.freebsd.org/mail/>; (Web Archive) > List-Help: <mailto:majordomo?subject=help> (List Instructions) > List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security> > List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security> > X-Loop: FreeBSD.org > Precedence: bulk > > Hello, > > i have tried to make a good firewall but I have some problems. This is my > rc.firewall.rules file. > > add 500 allow all from 192.168.0.0/16 to any > add 525 allow all from any to 192.168.0.0/16 > > #add 575 allow ip from any to MY_IP > #add 600 allow ip from MY_IP to any > > add 615 allow tcp from any to MY_IP 22,5618,10000 > add 625 allow tcp from MY_IP to any > > add 650 allow udp from any to MY_IP > add 700 allow udp from MY_IP to any > > add 800 allow icmp from any to MY_IP > add 750 allow icmp from MY_IP to any > > (MY_IP is my internet IP address. I have blocked it for abvious reasons) > > The problem is that I can't access the services that I have allowed. For > example I can't access the service that's behind port 22 on MY_IP. > Why is this? If I allow IP from any to MY_IP and allow ip from MY_IP to any > all ports are open. And that;s just what I don't want. > > I hope you guys fill me and can help me. > > Thanks, I can't seem to solve this one. > > Marcel > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message ---end quoted text--- -- Christian Schreiber, Netrail Network Security Engineer - Ape will not kill Ape To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010607122001.B72448>