Date: Wed, 31 Aug 2005 03:39:06 +0300 From: "Chris Dionissopoulos" <dionch@freemail.gr> To: <dandee@volny.cz>, <freebsd-ipfw@freebsd.org> Subject: Re: Application layer firewall on FreeBSD, is it possible ? Message-ID: <003f01c5adc4$65735660$0100000a@R3B> References: <20050831001634.63B2C4E704@pipa.profix.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
>So is it possible on FreeBSD OS ? ... or try this one: /usr/ports/security/snort_inline with this guide: http://freebsd.rogness.net/snort_inline/ a very quick example: your ipfw rules: 00100 allow ip from any to any via lo0 00200 deny ip from any to 127.0.0.0/8 00300 deny ip from 127.0.0.0/8 to any 02000 divert 666 ip from any to any 65000 allow ip from any to any 65535 deny ip from any to anywhile your gateway running:snort_inline -J 666 -c snort_with_p2p_rules.confChris. ____________________________________________________________________ http://www.freemail.gr - δωρεάν υπηρεσία ηλεκτρονικού ταχυδρομείου. http://www.freemail.gr - free email service for the Greek-speaking.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003f01c5adc4$65735660$0100000a>