Date: Fri, 4 Jul 2003 15:34:34 +0300 (EEST) From: Andrey Simonenko <simon@comsys.ntu-kpi.kiev.ua> To: Dan Phiffer <dphiffer@hmc.edu> Cc: freebsd-questions@freebsd.org Subject: Re: ipfw troubles Message-ID: <20030704123434.063E020F@pm514-9.comsys.ntu-kpi.kiev.ua> In-Reply-To: <Pine.LNX.4.33.0307021429340.22146-100000@odin.ac.hmc.edu.lucky.freebsd.questions>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 3 Jul 2003 00:02:17 +0000 (UTC) in lucky.freebsd.questions, Dan Phiffer wrote: > I guess this means I'm not serving DHCP - what kind of rule would fix > that? I read somewhere that simply using natd adds statefulness to an > otherwise stateless ipfw configuration. Would an unstateful ipfw setup be > less secure in this case? > It is always a good thing to add last ``deny'' rule with ``log'', so you can see which packets are denied by the Firewall.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030704123434.063E020F>