Date: Tue, 8 Sep 1998 19:17:34 -0700 From: "Briang.org" <brian@briang.org> To: <freebsd-questions@FreeBSD.ORG> Subject: IP Blocking Message-ID: <000901bddb98$09eed180$2900a8c0@brian-desktop.thetingroup.com>
index | next in thread | raw e-mail
[-- Attachment #1 --] What I'm trying to do is block a Domain or a hole Class C segment, this is what I'm running ED0 = 24.1.88.xx ED1 = 192.168.0.1 local Lan = 192.168.0.2 to 192.168.0.64 /KERNEL IPDIVERT IPFIREWALL IPFIREWALL_VERBOSE IPFIREWALL_VERBOSE_LIMIT /etc/rc/local ipfw -f flush ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1 ipfw add divert 6668 all from any to any via ed0 ipfw add 6500 pass all from any to any I'm trying to block all traffic from 24.0.0.0/24 or which is home.com. I tryed " ipfw add deny all from 24.0.0.0/24 to 24.1.88.78 via ed0 " And that didn't work, Can you tell me how to log all incoming traffic to the box ? I have looked at man ipfw and just dont understand what it's trying to say about logging. Thanks Brian [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN"> <HTML> <HEAD> <META content=text/html;charset=iso-8859-1 http-equiv=Content-Type> <META content='"MSHTML 4.72.3110.7"' name=GENERATOR> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT color=#000000 size=2>What I'm trying to do is block a Domain or a hole Class C segment, this is what I'm running</FONT></DIV> <DIV> </DIV> <DIV><FONT size=2>ED0 = 24.1.88.xx</FONT></DIV> <DIV><FONT size=2>ED1 = 192.168.0.1</FONT></DIV> <DIV><FONT size=2>local Lan = 192.168.0.2 to 192.168.0.64</FONT></DIV> <DIV><FONT size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>/KERNEL</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT><FONT size=2>IPDIVERT</FONT></DIV> <DIV><FONT size=2>IPFIREWALL</FONT></DIV> <DIV><FONT size=2>IPFIREWALL_VERBOSE</FONT></DIV> <DIV><FONT size=2>IPFIREWALL_VERBOSE_LIMIT</FONT></DIV> <DIV><FONT size=2></FONT> </DIV> <DIV><FONT size=2>/etc/rc/local</FONT></DIV> <DIV><FONT size=2>ipfw -f flush<BR>ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1<BR>ipfw add divert 6668 all from any to any via ed0<BR>ipfw add 6500 pass all from any to any</FONT></DIV> <DIV><FONT size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>I'm trying to block all traffic from 24.0.0.0/24 or which is home.com.</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT><FONT size=2></FONT><FONT color=#000000 size=2>I tryed </FONT></DIV> <DIV><FONT color=#000000 size=2></FONT><FONT size=2>" ipfw add deny all from 24.0.0.0/24 to 24.1.88.78 via ed0 "</FONT></DIV> <DIV><FONT size=2>And that didn't work, </FONT></DIV> <DIV><FONT size=2>Can you tell me how to log all incoming traffic to the box ?</FONT></DIV> <DIV><FONT size=2>I have looked at man ipfw and just dont understand what it's trying</FONT></DIV> <DIV><FONT size=2>to say about logging.</FONT></DIV> <DIV><FONT size=2></FONT><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>Thanks Brian</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2> </FONT></DIV></BODY></HTML>help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000901bddb98$09eed180$2900a8c0>