Date: Sun, 19 Sep 2004 06:45:28 -0700 From: Rob <europax@comcast.net> To: questions@freebsd.org Subject: IP Firewall blocks cvsup Message-ID: <414D8D78.6090807@comcast.net>
next in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format. --------------030305050305090607040906 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Seems to work with everything else incl. ftp. What am I doing wrong? Thanks, Rob. --------------030305050305090607040906 Content-Type: text/plain; name="ipf.rules" Content-Transfer-Encoding: 7bit Content-Disposition: inline; filename="ipf.rules" block in log all pass out all pass out on lo all pass in on lo all pass out quick on bfe0 proto tcp/udp from any to any port > 1024 pass in quick on bfe0 proto icmp all icmp-type 0 pass in quick on bfe0 proto icmp all icmp-type 3 pass in quick on bfe0 proto icmp all icmp-type 11 block in on bfe0 proto tcp all flags S/SA block out on bfe0 proto tcp all flags SA/SA pass in quick on bfe0 proto tcp from any to any port = 22 flags S/SA keep state pass in quick on bfe0 proto tcp from any to any port = 25 flags S/SA keep state pass out on bfe0 proto tcp all keep state block return-rst in on bfe0 proto tcp from any to any port = 113 pass in on bfe0 proto tcp/udp from any port = 53 to any pass in on bfe0 proto tcp/udp from any port = 67 to any pass out on bfe0 proto tcp/udp from any port = 68 to any pass in on bfe0 proto tcp from any port = 80 to any #block out quick on bfe0 proto tcp from any port 5999><6011 to any #block out quick on bfe0 proto tcp from any port 5899><5911 to any #block out quick on bfe0 from any port = 2049 to any #block out quick on bfe0 from any port 136><140 to any --------------030305050305090607040906--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?414D8D78.6090807>