From owner-freebsd-security Fri Apr 9 0:17: 3 1999 Delivered-To: freebsd-security@freebsd.org Received: from bsd.vniigazmain.gazprom.ru (a17.gazprom.ru [194.215.12.17]) by hub.freebsd.org (Postfix) with ESMTP id 362B915470 for ; Fri, 9 Apr 1999 00:16:43 -0700 (PDT) (envelope-from smelekov@bsd.vniigazmain.gazprom.ru) Received: from vniigazmain.gazprom.ru by bsd.vniigazmain.gazprom.ru with ESMTP id LAA17722; (8.9.1/vak/1.9) Fri, 9 Apr 1999 11:08:19 +0400 (MSD) Message-ID: <370DAA59.7B3325E0@vniigazmain.gazprom.ru> Date: Fri, 09 Apr 1999 11:20:57 +0400 From: "Serguei V. Melekhov" Reply-To: smelekov@vniigazmain.gazprom.ru Organization: =?iso-8859-1?Q?=C4=CF?= "=?iso-8859-1?Q?=C2=CD=C8=C8=C3=C0=C7?=" =?iso-8859-1?Q?=CE=C0=CE?= "=?iso-8859-1?Q?=C3=C0=C7=CF=D0=CE=CC?=" X-Mailer: Mozilla 4.5 [en] (Win98; I) X-Accept-Language: ru,en MIME-Version: 1.0 To: "freebsd-security@FreeBSD.ORG" Subject: Ipfw related. Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hello Security Users, Maybe i missed something... Well.. Just read text below and help if u can.;) Thanks in advance. Let me show you one thing: ipfw add xxxx deny all from my.host.com to evil.host.com - It denies packets from my.host.com to evil.host.com, but evil.host.com still can send packets to my.host.com. Decision: add another deny rule. But here is my question! Is there any other ways to deny packets in both sides (in and out) by writing only one ipfw rule? Reason: I have a very big ipfw rule table and just wanna optimize it in some way. -- Yours, Serguei V. Melekhov System Administrator of International Relations And Information Division All-Russian Scientific Research Institute of Natural Gases and Gas Technologies Tel. (095) 355-9165 Fax: (095) 399-1677 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message