From owner-freebsd-questions Wed Jun 5 12:50:15 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id MAA27641 for questions-outgoing; Wed, 5 Jun 1996 12:50:15 -0700 (PDT) Received: from print.gfmurray.com ([207.6.88.3]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id MAA27563 for ; Wed, 5 Jun 1996 12:50:00 -0700 (PDT) From: tim@print.gfmurray.com Received: from client3.gfmurray.com (client3.gfmurray.com [207.6.88.13]) by print.gfmurray.com (8.7.5/8.6.12) with SMTP id MAA12131 for ; Wed, 5 Jun 1996 12:47:33 -0700 (PDT) Date: Wed, 5 Jun 1996 12:47:33 -0700 (PDT) Message-Id: <199606051947.MAA12131@print.gfmurray.com> X-Sender: tim@print.gfmurray.com X-Mailer: Windows Eudora Version 1.4.4 Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" To: freebsd-questions@freebsd.org Subject: IPFW in stable Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Having played around with the IPFW in stable, I have succeeded in only turning on all access - or blocking all access. ie. ipfw add accept all from any to any via any If I attempt any other rules, I am unable to access even the name server (on the same host). If anyone has a set of simple rules to share, I'd like to try them out. So far, it has been a little frustrating - the docs are obviously in a state of flux..... BTW my configuration is made up of the foloowing. One FreeBSD box that handles the mail (sendmail & pop), nameserving (BIND), HTTP server (apache), FTP server(washington U), caching proxy server for ftp & http (harvest cached) for a class C. A single dial-up line for 24 hr. slip access to an ISP as well as two dial-in lines for remote slip access. All of the other hosts are W95. thanks in advance.... Tim Baird Dominus Fecit "The Lord Made" Opinions expressed are not necessarily those of my employer etc. etc