Date: Wed, 7 May 2003 08:46:16 +0200 From: "Barry Irwin" <bvi@itouchlabs.com> To: "Daniela" <dgw@liwest.at>, <ipfw@FreeBSD.org> Subject: Re: Allow all traffic for a specific process Message-ID: <01b201c31464$6f16b4b0$4508a8c0@Beastie> References: <200305062208.06242.dgw@liwest.at>
next in thread | previous in thread | raw e-mail | index | archive | help
Morning One solution may be to run the process as a specific user, and allow all traffic to/from that user ? Have a look in the man page for details on using uid and gid for matching traffic. Barry -- Barry Irwin bvi@itouchlabs.com Tel: +27214875178 Systems Administrator: Networks And Security iTouch Technology iTouch TAS http://www.itouchlabs.com Mobile: +27824457210 ----- Original Message ----- From: "Daniela" <dgw@liwest.at> To: <ipfw@FreeBSD.org> Sent: Wednesday, May 07, 2003 12:08 AM Subject: Allow all traffic for a specific process > Hi all! > > Does IPFW have a feature to pass all traffic destined for ports a specific > process has opened? > The process opens many rapidly changing dynamic ports, UDP and TCP, so the > keep-state rules are useless most of the time. > > If this is not possible, would it be easy to implement? > I'm still a newbie, but if it's not too hard, I think I can do it. > > Regards, > Daniela > > > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" > > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01b201c31464$6f16b4b0$4508a8c0>