From owner-freebsd-net Fri Apr 30 16:27:21 1999 Delivered-To: freebsd-net@freebsd.org Received: from qatar.net.qa (qatar.net.qa [194.133.33.11]) by hub.freebsd.org (Postfix) with ESMTP id E3ED314C2E; Fri, 30 Apr 1999 16:27:10 -0700 (PDT) (envelope-from sodah@qatar.net.qa) Received: from qatar.net.qa (dieh.qatar.net.qa [194.133.37.108]) by qatar.net.qa (8.8.8/Internet-Qatar) with ESMTP id CAA09695; Sat, 1 May 1999 02:25:34 +0300 (GMT) Message-ID: <372A3BF0.B46F1607@qatar.net.qa> Date: Sat, 01 May 1999 02:25:36 +0300 From: Fadi Sodah X-Mailer: Mozilla 4.5 [en] (X11; I; Linux 2.0.36 i586) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-isp@FreeBSD.org, freebsd-net@FreeBSD.org Subject: Best firewall configuration Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Greetings What is the best firewall configuration to make smurf and ICMPs attack useless ? I'm runing an IRC server and would like to protect it as much as I can from all possible attacks. My ISP is offering a service, which will allow me to create any type of Packet Filtering policy I require for my aloccated server. The Firewall "Officers" sit between my server and the ISP backbone network. These Officers have full packet filtering capability and can filter on any protocol or IP address. My ISP asked me to tell them what exactly do I need and they gave me this example:- "List the IP Addresses to be configured for Packet Filtering Services and indicate the Policy Line for each. You may have multiple policy lines per IP Address. Attach a separate piece of paper if necessary." FROM: TO: Allow or Deny IP Address or Block IP Address or Block Port or Application Example Allow Any 206.171.12.100 ICMP Example Deny Any 206.171.12.32/27 ICMP Thanks in advance -Pons To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message