Date: Fri, 08 Mar 2002 01:46:10 +1000 From: Ian Pulsford <ianjp@optusnet.com.au> To: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: pppd pass-filter Message-ID: <3C878B42.9FF600A6@optusnet.com.au>
next in thread | raw e-mail | index | archive | help
Hi,
I'm trying to put some filters on pppd as added protection (not
replacing ipfw), but they don't seem to have any effect.
Here is what I have at the moment in /etc/ppp/options :
pass-filter '
!(inbound && dst port 20) &&
!(inbound && dst port 21) &&
!(inbound && dst port 22) &&
!(inbound && dst port 80) &&
!(inbound && dst port 111) &&
!(inbound && dst port 139) &&
!(inbound && dst port 2049) &&
!(inbound && dst port 3128) &&
!(inbound && dst port 5801) &&
!(inbound && dst port 5901) &&
!(inbound && dst port 6001) &&
!(inbound && dst port 8000) &&
!(inbound && dst port 8001)
'
I dropped my ipfw and used a couple of online firewall testers but they
indicated that the ports were open so I assume my pppd filters aren't
working. PPP_FILTER is in my kernel.
Any help appreciated.
Ian
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3C878B42.9FF600A6>