From owner-freebsd-questions@FreeBSD.ORG Sun Feb 20 18:05:11 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 15B6116A4CE for ; Sun, 20 Feb 2005 18:05:11 +0000 (GMT) Received: from osiris.email.starband.net (osiris.email.starband.net [148.78.247.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9F04843D1F for ; Sun, 20 Feb 2005 18:05:10 +0000 (GMT) (envelope-from scottclansman@cwazy.co.uk) Received: from [192.168.0.2] (vsat-148-63-97-60.c002.t7.mrt.starband.net [148.63.97.60])j1KI52S9024890 for ; Sun, 20 Feb 2005 13:05:04 -0500 Message-ID: <421A21F4.1050509@cwazy.co.uk> Date: Mon, 21 Feb 2005 12:01:24 -0600 From: SigmaX User-Agent: Mozilla Thunderbird 1.0 (X11/20041206) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV 0.80/704/Thu Feb 10 06:37:18 2005 clamav-milter version 0.80j on osiris X-Virus-Status: Clean Subject: IPFW config X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 20 Feb 2005 18:05:11 -0000 Heya; I have a FreeBSD 5.3 server that I access over SSH. I followed the handbook guide to loading the ipfw kernel module to setup a firewall. I made the mistake the other day of loading the firewall, which defaults to block all, and rebooting, so I couldn't get into the system again (Had to drive in and fix it :-P). Anyway, what I need to know is how to edit the ruleset manually BEFORE enabling the firewall. I need to set the rules, then load the kernel module, not vise versa. I've never dealt with ipfw without webmin, so I need some explicit answers :-). What I need to do its this: Set IPFW to allow traffic on ports 80, 10000, and 23 (That's the default SSH port, right?) Then start IPFW with the kernel module (I know how to do this) Thanx, SigmaX -- Registered Linux Freak #: 366,862 "If you think of MS-DOS as mono, and Windows as stereo, then Linux is Dolby Pro-Logic Surround Sound with Bass Boost and all the music is free."