Date: Wed, 10 Dec 1997 21:50:04 +0000 From: Karl Pielorz <kpielorz@tdx.co.uk> To: freebsd-isp@freebsd.org Subject: Re: ipfw rule needed Message-ID: <348F0E8C.6300F790@tdx.co.uk> References: <Pine.BSF.3.96.971210100457.19886B-100000@fly.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Try: ipfw add allow tcp from xx.xx.xx.xx 1023-65535 to yy.yy.yy.yy 23 ipfw add allow tcp from yy.yy.yy.yy 23 to xx.xx.xx.xx 1023-65535 established ipfw add allow tcp from yy.yy.yy.yy 1023-65535 to xx.xx.xx.xx 23 ipfw add allow tcp from xx.xx.xx.xx 23 to yy.yy.yy.yy 1023-65535 established Where xx.xx.xx.xx = Remote Specific Host and yy.yy.yy.yy is your Host on your Network (that was previously blocked). This should allow SMTP in / out from / to the machines you require... Kp Gary Blumenstein wrote: > > Folks, > > Can anyone help me define a working rule combination that allows smtp > traffic to and from a specific host sitting outside my firewall? By > default, I block all ip traffic to the network where this particular host > resides, so I want to install a a more specific rule earlier in the chain > that preferably defines the port numbers on both the inbound and outbound > packet (ie. port 25 and corresponding "ack" response flags on ports > > 1024) > > Thanks for any help! > > -Gary > > P.S. Also, is there a FAQ (besides the FreeBSD faq) for this mailing > list? I'm a new member. > > -- > garyb@fly.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?348F0E8C.6300F790>