Date: Tue, 19 Jun 2001 08:50:00 -0500 From: "Thomas T. Veldhouse" <veldy@veldy.net> To: "default013 - subscriptions" <default013subscriptions@hotmail.com>, <freebsd-security@freebsd.org> Subject: Re: IPFW newbie Message-ID: <004701c0f8c6$bc14b2a0$3028680a@tgt.com> References: <OE34va7DYaOqlOQq2vX00002c3c@hotmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
You will want to override the rules in /etc/defaults/rc.conf so that your firewall is enabled. I then suggest you write your own firewall script (in /etc/rc.conf, firewall_script="/etc/my.firewall.script") and setup the rules you want. Read through the existing /etc/rc.firewall script and you will learn a lot. Then use the manpage for ipfw and you will learn a lot more. Tom Veldhouse veldy@veldy.net ----- Original Message ----- From: "default013 - subscriptions" <default013subscriptions@hotmail.com> To: <freebsd-security@freebsd.org> Sent: Tuesday, June 19, 2001 2:11 AM Subject: IPFW newbie > Hi, > > I'm about to compile IPFW into the kernel for the first time... and just had > a quick question... also, if anyone has any tips I would appreciate it. > (this is going to be used on a webserver that runs everything from apache to > shoutcast...) > > I am going to compile it in using this option: > options IPFIREWALL_VERBOSE_LIMIT=10 > > My question is, I connect to my box using an SSH session. The default for > IPFW is not to accept connections correct? So after my machine reboots with > these new rules in place, will I have to set the IPFW rules in place so that > I can once again open an SSH session to it again? Or how does that work... > > Thanks > > Jordan > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004701c0f8c6$bc14b2a0$3028680a>