From owner-freebsd-stable  Wed Dec 18 13:44:45 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D00DB37B401
	for <stable@freebsd.org>; Wed, 18 Dec 2002 13:44:43 -0800 (PST)
Received: from mail.liwing.de (mail.liwing.de [213.70.188.162])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B6EEA43EDA
	for <stable@freebsd.org>; Wed, 18 Dec 2002 13:44:42 -0800 (PST)
	(envelope-from rehsack@liwing.de)
Received: (qmail 56219 invoked from network); 18 Dec 2002 21:44:40 -0000
Received: from stingray.liwing.de (HELO liwing.de) ([213.70.188.164])
          (envelope-sender <rehsack@liwing.de>)
          by mail.liwing.de (qmail-ldap-1.03) with SMTP
          for <cliftonr@lava.net>; 18 Dec 2002 21:44:40 -0000
Message-ID: <3E00EC13.7060704@liwing.de>
Date: Wed, 18 Dec 2002 22:43:47 +0100
From: Jens Rehsack <rehsack@liwing.de>
Organization: LiWing IT-Services
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Clifton Royston <cliftonr@lava.net>
Cc: "Robin P. Blanchard" <robin.blanchard@gactr.uga.edu>,
	stable@freebsd.org
Subject: Re: ipfilter / ipnat quandry
References: <EE3D3FBAFFCAED448C21C398FDAD91AC01077A@EBE1.gc.nat> <EE3D3FBAFFCAED448C21C398FDAD91AC0440C2@EBE1.gc.nat> <20021218092753.E4007@lava.net>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Clifton Royston wrote:
> On Wed, Dec 18, 2002 at 02:25:21PM -0500, Robin P. Blanchard wrote:
> 
>>Well...After a bit of trial and error with my ruleset I've determined
>>that commenting out the entires in the below stanza cause nmap to report
>>as expected (only port 22 is open. Is this by design? The commented
>>entries are directly out of the IPF faq. ???
>>
>>Robin.
> 
> 
>   Does nmap now show all other TCP ports as "filtered" or as "closed"?
>   -- Clifton
> 

Hey Guys, try to run nmap against 213.70.188.163 (helo.liwing.de), 
213.70.188.162 (mail.liwing.de) and 213.70.188.164 (stingray.liwing.de).
(Not you, rifter - I know you can do more!)

They all have some daemons running but provide only public accessible 
ports outside to the public.

I'm interested which ports are shown as filtered and wich as closes etc. 
I'll publish the rules if you want.

Jens


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message