From owner-freebsd-security Wed Jul 17 6:37:18 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D2E2D37B400 for ; Wed, 17 Jul 2002 06:37:15 -0700 (PDT) Received: from doos.cluecentral.net (cluecentral.net [193.109.122.221]) by mx1.FreeBSD.org (Postfix) with SMTP id 4896243E5E for ; Wed, 17 Jul 2002 06:37:14 -0700 (PDT) (envelope-from sabri@cluecentral.net) Received: (qmail 86255 invoked by uid 1000); 17 Jul 2002 13:37:06 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 17 Jul 2002 13:37:06 -0000 Date: Wed, 17 Jul 2002 15:37:06 +0200 (CEST) From: Sabri Berisha To: "Carroll, D. (Danny)" Cc: Bart Matthaei , Subject: RE: ipfw and it's glory... In-Reply-To: <6C506EA550443D44A061432F1E92EA4C6C5364@ing.com> Message-ID: <20020717153409.Y86012-100000@doos.cluecentral.net> X-NCC-Regid: nl.bit X-No-Archive: yes Approved: sabri@pfy.nl MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, 17 Jul 2002, Carroll, D. (Danny) wrote: > :How about DNS? You send out a query from an high udp port to a dns > :server's port 53. It will send you an udp packet to that high port. > > But it's source port will be 53. So you can put in a rule for that. > Plus it's only 1 or 2 servers so you can put in special rules for them. Unless you run a local dnscache (which I would do). -- Sabri Berisha - www.megabit.nl - "I route, therefore you are" - http://www.fordreallysucks.com/more_info.html - 'that particular feeding of Martijn Bevelander, notorious spammer and whiney repeat-posting troll, was almost a work of art.' (nanae) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message