From owner-freebsd-questions Wed Mar 27 22: 3:28 2002 Delivered-To: freebsd-questions@freebsd.org Received: from sccmmhc01.mchsi.com (sccmmhc01.mchsi.com [204.127.203.183]) by hub.freebsd.org (Postfix) with ESMTP id 2415137B405 for ; Wed, 27 Mar 2002 22:03:21 -0800 (PST) Received: from www.technaholics.com ([12.218.133.12]) by sccmmhc01.mchsi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020328060320.WQOD1219.sccmmhc01.mchsi.com@www.technaholics.com>; Thu, 28 Mar 2002 06:03:20 +0000 Received: from spgcalbert ([10.15.1.20]) by www.technaholics.com (8.11.3/8.11.3) with SMTP id g2S63FP05057; Thu, 28 Mar 2002 00:03:16 -0600 (CST) (envelope-from chadalbert@mchsi.com) Message-ID: <010801c1d61e$4199dc90$14010f0a@spgcalbert> From: "Chad Albert" To: "tony" , , References: Subject: Re: IPFW rules, Internet Date: Thu, 28 Mar 2002 00:03:14 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Your ipfw is not using ANY rules except the default which is "deny all" unless you changed this in your kernel. By using Tony's lines in the rc.conf you tell it to use a set of rules in the default /etc/rc.firewall when you define a type. You can also roll your own. Try doing a man on rc.conf and searching for firewall. Also a man on ipfw and natd will be a good resource. ----- Original Message ----- From: "tony" To: ; Sent: Wednesday, March 27, 2002 11:33 PM Subject: RE: IPFW rules, Internet > make sure these lines are in your /etc/rc.conf file > > gateway_enable="YES" > firewall_enable="YES" > firewall_type="open" > > as for changing it without a reboot I dont know... maybe its a syscontrol > thing? I would love to find out, help anyone? > > Tony > > > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Charlie Root > Sent: Wednesday, March 27, 2002 11:44 PM > To: questions@FreeBSD.ORG > Subject: IPFW rules, Internet > > > Hello there, > > I've got a DHCP cable connection and have compiled the IPFIREWALL option > into > my kernel. There now is a module ipfw, and it is loaded at startup. When > loaded, all > connections are not working, neither is ping. I know its the rule set. > What I'd like to > know is, what are the main config files to edit to allow rules to access > the web, irc, > ping, etc. and how to enable/disable ipfw on the run. > > Advice is appreciated. > Nick Lozinsky > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message