From owner-freebsd-questions Sat Jan 12 7:10:23 2002 Delivered-To: freebsd-questions@freebsd.org Received: from b1n.org (200-171-41-43.dsl.telesp.net.br [200.171.41.43]) by hub.freebsd.org (Postfix) with ESMTP id DBDCA37B400 for ; Sat, 12 Jan 2002 07:10:19 -0800 (PST) Received: by b1n.org (Postfix, from userid 1000) id E969D810F; Sat, 12 Jan 2002 13:10:10 -0200 (BRST) Date: Sat, 12 Jan 2002 13:10:10 -0200 From: BinarySoul To: Rogier Steehouder Cc: Chris Appleton , freebsd-questions@freebsd.org Subject: Re: ipfw rules Message-ID: <20020112131010.B31058@b1n.org> References: <20020111200507.5340.qmail@web14804.mail.yahoo.com> <20020112130139.A688@localhost> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020112130139.A688@localhost>; from r.j.s@gmx.net on Sat, Jan 12, 2002 at 01:01:39PM +0100 X-Operating-System: OpenBSD 3.0 (i386) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Dont forget opening 20 (ftp-data) too or ftp wont work. Rogier Steehouder (r.j.s@gmx.net) wrote: > On 11-01-2002 12:05 (-0800), Chris Appleton wrote: > > allow tcp from any 21 to a.b.c.d > > This means allow connections from port 21 on any machine to any port on > a.b.c.d, so you completely opened up your system. > > What you're probably looking for is: > > allow tcp from any to a.b.c.d 21 > > Allow any machine to connect to only port 21 on a.b.c.d > > With kind regards, Rogier Steehouder > > -- > ___ _ > -O_\ // > | / Rogier Steehouder //\ > / \ r.j.s@gmx.net // \ > <---------------------- 25m ----------------------> > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message