From owner-freebsd-ipfw@FreeBSD.ORG Wed Feb 27 03:09:51 2008 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 81C0C1065670 for ; Wed, 27 Feb 2008 03:09:51 +0000 (UTC) (envelope-from bounces@nabble.com) Received: from kuber.nabble.com (kuber.nabble.com [216.139.236.158]) by mx1.freebsd.org (Postfix) with ESMTP id 5FE7613C45D for ; Wed, 27 Feb 2008 03:09:51 +0000 (UTC) (envelope-from bounces@nabble.com) Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1JUCOx-0000H2-WB for freebsd-ipfw@freebsd.org; Tue, 26 Feb 2008 18:52:11 -0800 Message-ID: <15704943.post@talk.nabble.com> Date: Tue, 26 Feb 2008 18:52:11 -0800 (PST) From: steve13th To: freebsd-ipfw@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: anderssl@purdue.edu Subject: IPFW Established and Outside Traffic Problem X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Feb 2008 03:09:51 -0000 Given: Running FREEBSD What I want to do: I am attempting to disable the following things: Note H= host octet 1. disable pings 2. disable traffic originating from networks other than HHH.HH.HHH.0/24 3. allow traffic to originate from HHH.HH.HHH.11 and go back and forth with the internet Status: I am able to block pings, but I can't have traffic with the internet My rules ipfw add 1 icmp from any to any icmp 0,8 ipfw add 2 allow tcp any to any established ipfw add 3 allow all from HHH.HH.HHH.11/24 to any -- View this message in context: http://www.nabble.com/IPFW-Established-and-Outside-Traffic-Problem-tp15704943p15704943.html Sent from the freebsd-ipfw mailing list archive at Nabble.com.