From owner-freebsd-questions Sun Aug 27 6: 5:51 2000 Delivered-To: freebsd-questions@freebsd.org Received: from guru.mired.org (zoom1-173.telepath.com [216.14.1.173]) by hub.freebsd.org (Postfix) with SMTP id 081DD37B424 for ; Sun, 27 Aug 2000 06:05:48 -0700 (PDT) Received: (qmail 52783 invoked by uid 100); 27 Aug 2000 13:05:47 -0000 From: Mike Meyer MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <14761.4651.188114.118636@guru.mired.org> Date: Sun, 27 Aug 2000 08:05:47 -0500 (CDT) To: Rick Knebel Cc: questions@freebsd.org Subject: Re: firewall In-Reply-To: References: <14761.3575.652383.627103@guru.mired.org> X-Mailer: VM 6.72 under 21.1 (patch 10) "Capitol Reef" XEmacs Lucid X-face: "5Mnwy%?j>IIV\)A=):rjWL~NB2aH[}Yq8Z=u~vJ`"(,&SiLvbbz2W`;h9L,Yg`+vb1>RG% *h+%X^n0EZd>TM8_IB;a8F?(Fb"lw'IgCoyM.[Lg#r\ Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Rick Knebel writes: > >Rick Knebel writes: > >> What can I use for user ppp. > >user ppp has it's own filtering capabilities. If you don't want anyone > >outside connecting your servers, but need dns to work, something like: > ># inbound - be paranoid! - established connections and dns only > > set filter in 0 permit tcp estab > > set filter in 1 permit udp src eq domain > Is there a specific file I need to edit ? Sorry, should have mentioned that. This goes in /etc/ppp/ppp.conf. Look through that, and the ppp(8) man page for more information.