From owner-freebsd-ipfw@FreeBSD.ORG  Sat Jun  7 03:22:55 2008
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 57DAE1065675
	for <freebsd-ipfw@freebsd.org>; Sat,  7 Jun 2008 03:22:55 +0000 (UTC)
	(envelope-from berlowin@yahoo.com)
Received: from web52510.mail.re2.yahoo.com (web52510.mail.re2.yahoo.com
	[206.190.48.193])
	by mx1.freebsd.org (Postfix) with SMTP id EB2668FC13
	for <freebsd-ipfw@freebsd.org>; Sat,  7 Jun 2008 03:22:54 +0000 (UTC)
	(envelope-from berlowin@yahoo.com)
Received: (qmail 23667 invoked by uid 60001); 7 Jun 2008 02:56:13 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
	h=Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type:Message-ID;
	b=5fGWijcbPerbyfe7qxqdhjXMGqI0HBOmc2QG9geE06WL91kaRfg6ReXodUqdFEXyr1DENS2yii8Fjn81eGcqBZQ7CJ68weEy14mUNnn0dCUr2jvr2HUeFLzdqWxUX08CDalqFbvJ2LZBG+uxVDCRE4ehVqGTobGEutqdfL6ofao=;
Received: from [118.136.66.242] by web52510.mail.re2.yahoo.com via HTTP;
	Fri, 06 Jun 2008 19:56:12 PDT
X-Mailer: YahooMailRC/975.45 YahooMailWebService/0.7.199
Date: Fri, 6 Jun 2008 19:56:12 -0700 (PDT)
From: Edwin Sanjoto <berlowin@yahoo.com>
To: freebsd-ipfw@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-ID: <58008.22311.qm@web52510.mail.re2.yahoo.com>
Subject: About IPv6 Firewall and Others
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Jun 2008 03:22:55 -0000

Hi All of FreeBSD Experts,

I am Newbie in FreeBSD. I am using FreeBSD 6.3. Sorry for my bad English. I just want to ask 2 questions:

1. In your opinion, what are the best rules for implementing firewall in my router which is connected to internet? Like about the protocol or services blocked?  Or which is the best rule for default ( is it "deny any to any" or "allow any to any") ?

2. How to setup firewall for IPv6 from beginning? Like, what i must do with the kernel or something else like changing /etc/rc.conf? And how to write the RULES for IPv6? is it different from IPv4? Do you have an example RULES?

Thank you very much.

 
Regards,

EDWIN Sanyoto
(berlowin@yahoo.com)