From owner-freebsd-questions Sat Apr 10 22:49:22 1999 Delivered-To: freebsd-questions@freebsd.org Received: from ns.clientlogic.com (ns.clientlogic.com [207.51.66.75]) by hub.freebsd.org (Postfix) with ESMTP id B586A153FC for ; Sat, 10 Apr 1999 22:49:21 -0700 (PDT) (envelope-from ChrisMic@clientlogic.com) Received: by site0s1 with Internet Mail Service (5.5.2448.0) id <2N113AGD>; Sun, 11 Apr 1999 01:47:55 -0400 Message-ID: <6C37EE640B78D2118D2F00A0C90FCB441A605C@site2s1> From: Christopher Michaels To: "FreeBSD Mailing List (E-mail)" Subject: IPFW filtering on a dynamic linkup. Date: Sun, 11 Apr 1999 01:48:17 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2448.0) Content-Type: text/plain Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG FreeBSD-2.2.8 Hello, I've been trying to figure out how to do this with no avail. I have a dialup link, using usermode ppp on the tun0 device. What I would like to be able to do is filter requests going to specific ports, via the dialup link. So for example, if someone tries to connect to my machine's telnet port (23) it'll be filtered. I don't want to filter out requests via the fxp0 interface though. I also do not was to filter out any requests to port 23 going out over the tun0 device. The thing is, most of the example rules in the ipfw config file need the machine's IP address to do this, and it is a dynamic address. Also, is there anyway/anywhere that ipfw logs packets that matched a specific rule, as in where and where it originated? Any help, pointers, references (other than 'man ipfw' unless you are pointing out a specific thing I missed) would be appreciated. -Chris P.S. I don't want to use tcpwrappers, citing the telnet port was just an example. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message