From owner-freebsd-questions Sat Jun 1 11:12:57 2002 Delivered-To: freebsd-questions@freebsd.org Received: from nova.anchoragerescue.org (95-7-237-24-cable.anchorageak.net [24.237.7.95]) by hub.freebsd.org (Postfix) with ESMTP id 8A0B337B401 for ; Sat, 1 Jun 2002 11:12:52 -0700 (PDT) Received: from there (localhost.anchoragerescue.org [127.0.0.1]) by nova.anchoragerescue.org (Postfix) with SMTP id DB6E51F for ; Sat, 1 Jun 2002 09:41:09 -0800 (AKDT) Content-Type: text/plain; charset="iso-8859-1" From: Beech Rintoul Reply-To: akbeech@sinbad.net To: freebsd-questions@FreeBSD.ORG Subject: Re: firewall question Date: Sat, 1 Jun 2002 09:41:09 -0800 X-Mailer: KMail [version 1.3] References: <20020601094500.A4058@sunny.localdomain> In-Reply-To: <20020601094500.A4058@sunny.localdomain> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Organization: Sinbad Network Communications Message-Id: <20020601174109.DB6E51F@nova.anchoragerescue.org> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Saturday 01 June 2002 08:45 am, you wrote: > Hi, > > I am trying to set up my firewall, and I am following one of the O'Reilly > howto's. I don't see instructions in there for me to edit the > /etc/rc.firewall, but I was looking at that file, and it includes ip > addresses that do not match my actual ip address, netmask, etc. > > For instance, it says ip is 192.0.0.1. Do I need to change these values to > match my actual fxp0 values? I would think the O'Reilly would tell me if I > needed to change those values, but it doesn't. I would also think that > those values should match the actual values, but they don't. > > Can someone help me out here? > > Thank you, > > Eric The entries in rc.firewall are examples and starting points. There is no "one size fits all" and you will need to develop your own rules. If you are going to use one of the example configs as a starting point you will need to edit it to match your own interfaces and IP's. The manpages and handbook are your friends. http://www.freebsd.org/handbook/firewalls.html Beech -- ------------------------------------------------------------------- Beech Rintoul - SysAdmin - akbeech@sinbad.net /"\ ASCII Ribbon Campaign | Sinbad Network Communications \ / - NO HTML/RTF in e-mail | 3101 Penland Parkway #K-38 X - NO Word docs in e-mail | Anchorage, AK 99508-1957 / \ ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message