Date: Thu, 1 Aug 2002 12:08:58 -0500 (CDT) From: "Douglas A. Maske" <maske@maske.org> To: <questions@freebsd.org> Subject: ipfw rules question Message-ID: <1185.10.0.0.27.1028221738.squirrel@mail.maske.org>
next in thread | raw e-mail | index | archive | help
Hello, I am nat'ing my cable modem, why doesn't this configuration work? It's either slow or inaccessable. #!/bin/sh ipfw add 00100 divert 8668 ip from any to any ipfw add 00101 allow tcp from any 21 to any keep-state established ipfw add 00102 allow tcp from any 22 to any keep-state established ipfw add 00202 allow tcp from any 25 to any keep-state established ipfw add 00203 allow tcp from any 53 to any keep-state established ipfw add 00204 allow tcp from any 80 to any keep-state established ipfw add 00205 allow tcp from any 110 to any keep-state established ipfw add 00206 allow tcp from any 143 to any keep-state established ipfw add 00207 allow tcp from any 443 to any keep-state established ipfw add 00209 allow tcp from any 5900 to any keep-state established ipfw add 00210 allow ip from any to any keep-state via xl0 ipfw add 00611 allow ip from any to any keep-state via lo0 ipfw add 00711 allow ip from any to any keep-state out xmit xl1 ipfw add 00712 allow ip from 10.0.0.0/24 to any keep-state ipfw add 00713 allow ip from 10.0.0.0/24 to 10.0.0.0/24 keep-state ipfw add 00715 allow udp from any to any keep-state ipfw add 00716 allow ip from any to any ipfw add 65535 deny ip from any to any Douglas A. Maske Code Thrower/Webmaster http://www.maske.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1185.10.0.0.27.1028221738.squirrel>