From owner-freebsd-security  Thu Sep 23 15:22:47 1999
Delivered-To: freebsd-security@freebsd.org
Received: from eris.memes.com (eris.memes.com [204.201.42.3])
	by hub.freebsd.org (Postfix) with ESMTP id 2D2D714F7A
	for <freebsd-security@freebsd.org>; Thu, 23 Sep 1999 15:22:44 -0700 (PDT)
	(envelope-from montejw@memes.com)
Received: from timpax.memes.com (c6.memes.com [204.201.42.87])
	by eris.memes.com (8.8.7/8.8.7) with SMTP id PAA05696
	for <freebsd-security@freebsd.org>; Thu, 23 Sep 1999 15:19:01 -0700
Message-Id: <3.0.5.32.19990923152232.007c94c0@memes.com>
X-Sender: montejw@memes.com
X-Mailer: QUALCOMM Windows Eudora Light Version 3.0.5 (32)
Date: Thu, 23 Sep 1999 15:22:32 -0700
To: freebsd-security@freebsd.org
From: Monte Westlund <montejw@memes.com>
Subject: default rc.firewall
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Hello,
I setting up a FreeBSD box as firewall to a windows LAN. I've installed 2
NIC's. One connects to a DSL modem, the other connects to the LAN.

Using the 'simple' firewall that is in the default rc.firewall I can't get
out from any of the machines on the LAN without adding

allow ip from any to any

to the ipfw rules. I have been adding it manually using 'ipfw add ....'

Can anyone point me in the direction of an example of a 'modified'
rc.firewall for the simple firewall? Or give me an idea of what I need to
add/allow?

Thanks,
Monte Westlund



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message