Date: Sun, 19 Sep 2004 06:45:28 -0700 From: Rob <europax@comcast.net> To: questions@freebsd.org Subject: IP Firewall blocks cvsup Message-ID: <414D8D78.6090807@comcast.net>
index | next in thread | raw e-mail
[-- Attachment #1 --] Seems to work with everything else incl. ftp. What am I doing wrong? Thanks, Rob. [-- Attachment #2 --] block in log all pass out all pass out on lo all pass in on lo all pass out quick on bfe0 proto tcp/udp from any to any port > 1024 pass in quick on bfe0 proto icmp all icmp-type 0 pass in quick on bfe0 proto icmp all icmp-type 3 pass in quick on bfe0 proto icmp all icmp-type 11 block in on bfe0 proto tcp all flags S/SA block out on bfe0 proto tcp all flags SA/SA pass in quick on bfe0 proto tcp from any to any port = 22 flags S/SA keep state pass in quick on bfe0 proto tcp from any to any port = 25 flags S/SA keep state pass out on bfe0 proto tcp all keep state block return-rst in on bfe0 proto tcp from any to any port = 113 pass in on bfe0 proto tcp/udp from any port = 53 to any pass in on bfe0 proto tcp/udp from any port = 67 to any pass out on bfe0 proto tcp/udp from any port = 68 to any pass in on bfe0 proto tcp from any port = 80 to any #block out quick on bfe0 proto tcp from any port 5999><6011 to any #block out quick on bfe0 proto tcp from any port 5899><5911 to any #block out quick on bfe0 from any port = 2049 to any #block out quick on bfe0 from any port 136><140 to anyhelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?414D8D78.6090807>