From owner-freebsd-questions Fri Dec 21 14:14: 7 2001 Delivered-To: freebsd-questions@freebsd.org Received: from services.webwarrior.net (overlord-host99.dsl.visi.com [209.98.86.99]) by hub.freebsd.org (Postfix) with ESMTP id 2280237B41A for ; Fri, 21 Dec 2001 14:14:05 -0800 (PST) Received: from twincat.vladsempire.net (hutch-345.hutchtel.net [206.10.68.45]) by services.webwarrior.net (Postfix) with ESMTP id 398924B0 for ; Fri, 21 Dec 2001 16:15:14 -0600 (CST) Received: by twincat.vladsempire.net (Postfix, from userid 1001) id 5BCEB3823; Fri, 21 Dec 2001 16:14:12 +0000 (GMT) Date: Fri, 21 Dec 2001 16:14:11 +0000 From: Josh Paetzel To: Chris Appleton Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw Message-ID: <20011221161411.C3202@twincat.vladsempire.net> Mail-Followup-To: Chris Appleton , freebsd-questions@FreeBSD.ORG References: <20011221220234.62703.qmail@web14803.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20011221220234.62703.qmail@web14803.mail.yahoo.com>; from appleton_chris@yahoo.com on Fri, Dec 21, 2001 at 02:02:34PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, Dec 21, 2001 at 02:02:34PM -0800, Chris Appleton wrote: > I'm running ipfw on a 4.4-release bridge. > > I'm having trouble getting the rule syntax correct. > It is working well from a.b.c.d with the following > rules > > 00400 add allow ip from any to a.b.c.d > 00450 add allow ip from a.b.c.d to any > 65535 add deny ip any to any > > when i try: add allow ip from any to a.b.c.d 80 to > specify port, i get an error loading the rules. > also, do i require 2 rules everytime, one for each > direction. ideally i would like to 'allow any 80 to > any 80 - is that possible. > > any good ipfw rule help - keeping in mind i don't > think i can use in via and such with bridge. > > thanks advance Do add allow tcp from any to a.b.c.d 80 You can only specify ports with tcp and udp Josh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message