From owner-freebsd-stable  Sun Aug 19 11:14:20 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from obelix.spectraweb.ch (obelix.plusnet.ch [194.158.230.8])
	by hub.freebsd.org (Postfix) with ESMTP id A9AFD37B409
	for <freebsd-stable@freebsd.org>; Sun, 19 Aug 2001 11:14:15 -0700 (PDT)
	(envelope-from pcservice.schweizer@spectraweb.ch)
Received: from pc-service.ch (abo-mu-1-1-dialup-172.spectraweb.ch [194.230.153.172])
	by obelix.spectraweb.ch (8.11.2/8.9.3/SuSE Linux 8.9.3-0.1) with ESMTP id f7JIE6v08742
	for <freebsd-stable@freebsd.org>; Sun, 19 Aug 2001 20:14:07 +0200
Received: (from martin@localhost)
	by pc-service.ch (8.11.3/8.11.3) id f7JIITo00373
	for freebsd-stable@freebsd.org; Sun, 19 Aug 2001 20:18:29 +0200 (CEST)
	(envelope-from pcservice.schweizer@spectraweb.ch)
Date: Sun, 19 Aug 2001 20:18:24 +0200
From: Martin Schweizer <pcservice.schweizer@spectraweb.ch>
To: freebsd-stable@freebsd.org
Subject: IPFirewall
Message-ID: <20010819201824.A330@pc-service.ch>
Reply-To: Martin Schweizer <info@pc-service.ch>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Hello

I want use IPFirewall on my freebsd4.3-box. I read the handbook (chapter 9.7.3 and 
following) and I also set the kernel options and re-compile the kernel. My 
questions:
- rc.conf: Do I need an entry for starting? If yes, which?
- After this steps I can't connect over my ppp dailup th the Internet. After 
I set "ipfw add allow all from any to any" it works. Why that?
- If I reboot all my rules are blow away. How can I make them resistent?
- If I want allow all from my freebsd-box to outside and all deny from outside 
to my freebsd-box, which rule is correct (" ipfw add allow all from localhost 
to any" won't work? Why?

Thank you in advance.

-- 
Regards
Martin 
<info@pc-service.ch>

PC-Service M. Schweizer; Gewerbehaus Schwarz; CH-8608 Bubikon
Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message