From owner-freebsd-questions@FreeBSD.ORG Fri Feb 4 14:32:32 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3AB7116A4CE for ; Fri, 4 Feb 2005 14:32:32 +0000 (GMT) Received: from smtp-hub.mrf.mail.rcn.net (smtp-hub.mrf.mail.rcn.net [207.172.4.107]) by mx1.FreeBSD.org (Postfix) with ESMTP id EF4D943D2D for ; Fri, 4 Feb 2005 14:32:31 +0000 (GMT) (envelope-from crzdgns1@starpower.net) Received: from ms07.mrf.mail.rcn.net ([207.172.4.13]) by smtp-hub.mrf.mail.rcn.net with esmtp (Exim 3.35 #4) id 1Cx4Vb-0005jT-00 for freebsd-questions@freebsd.org; Fri, 04 Feb 2005 09:32:31 -0500 Received: from 128.231.88.3 by ms07.mrf.mail.rcn.net (MOS 3.5.6-GR) with HTTP/1.1; Fri, 4 Feb 2005 09:32:31 -0500 Date: Fri, 4 Feb 2005 09:32:31 -0500 From: To: freebsd-questions@freebsd.org X-Mailer: Mirapoint Webmail Direct 3.5.6-GR MIME-Version: 1.0 Message-Id: <58bcd033.c960e3a7.819d500@ms07.mrf.mail.rcn.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Subject: Newbie Help: IP firewall configuration X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 04 Feb 2005 14:32:32 -0000 Hello, I am a UNIX/FreeBSD-5.3-RELEASE newbie. I have posted several times to freebsd-newbies, but I think this question will get better reception here. I have installed Free-BSD-5.3-RELEASE full base installation with X. I am currently trying to configure my firewall. I have followed the instructions in the Handbook explicitly, though I didn't add any scripts to my ipf.rules file. My ipf.rules file is verbatim from the Handbook, though I altered some of the commented out sections; the rules themselves are verbatim. I am having a difficult time with this specific section: > # Allow out access to my ISP's DHCP server for cable or DSL > networks. > # This rule is not needed for 'user ppp' type connection to the > # public Internet, so you can delete this whole group. > # Use the following rule and check log for IP address. > # Then put IP address in commented out rule & delete first rule > pass out log quick on dc0 proto udp from any to any port = 67 keep > state > #pass out quick on dc0 proto udp from any to z.z.z.z port = 67 keep > state Please help. How do I find the IP address referenced in the fourth #? Where is the log file that is referenced in the fourth #? If I need to use find, whereis, locate, or some other command line search tool to find the log file, please write out the details for me, because I am really struggling with command line syntax at this point. I have clearly suffered from too much exposure to the point and click world. Thank you! Mark P.S. Please let me know if I haven't provided enough information.