Date: Sun, 30 Oct 2005 18:23:22 -0600 From: Eric F Crist <ecrist@secure-computing.net> To: andy@neu.net Cc: freebsd-questions@freebsd.org, freebsd-mobile@freebsd.org Subject: Re: laptop firewall rules Message-ID: <F4A7C5AB-A8D1-4E46-A7E0-F1FD95E64ABC@secure-computing.net> In-Reply-To: <Pine.LNX.4.56.0510301731420.20733@Mira.dandy.net> References: <Pine.LNX.4.56.0510301731420.20733@Mira.dandy.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Oct 30, 2005, at 4:41 PM, andy@neu.net wrote: > Does anyone have a good example of a firewall ruleset for a wireless > interface in a laptop, or a pointer to documentation? I want to use > IPFilter on 6.0 rc1. I want to let all connections out and keep > state, > but block all incoming from the outside. > > TIA That ruleset is easy: ipfw add check-state ipfw add allow tcp from me to any setup keep-state ipfw add allow tcp from any to any established ipfw add deny from any to me in This should do the trick. ----- Eric F Crist Secure Computing Networks http://www.secure-computing.net
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F4A7C5AB-A8D1-4E46-A7E0-F1FD95E64ABC>