Date: Mon, 11 Jun 2001 23:25:11 -0500 From: "Mario Doria" <madd@tecdigital.net> To: "Gerard Samuel" <trini0@optonline.net>, "Richard Lucas" <rlucas@threeh.com> Cc: "FreeBSD Questions" <questions@FreeBSD.ORG> Subject: Re: IPFilter not blocking? Message-ID: <019201c0f2f7$ac705220$0a00a8c0@midgar> References: <20010611151353.E24079-100000@localhost> <3B259546.4700A942@optonline.net>
next in thread | previous in thread | raw e-mail | index | archive | help
sorry for the two emails...also you have to make the default rule to pass, and then disable the passing of packets in the ipf.rules file. ----- Original Message ----- From: "Gerard Samuel" <trini0@optonline.net> To: "Richard Lucas" <rlucas@threeh.com> Cc: "FreeBSD Questions" <questions@FreeBSD.ORG> Sent: Monday, June 11, 2001 11:06 PM Subject: Re: IPFilter not blocking? > IPFilter doesnt bridge on FreeBSD, so I dont know if your plan would work. > As far as I know, only IPFIREWALL bridges... > > Richard Lucas wrote: > > > I've setup a bridging firewall by adding the following to my kernel: > > > > options BRIDGE > > options IPFILTER > > options IPFILTER_LOG > > options IPFILTER_DEFAULT_BLOCK > > > > I also put in net.link.ether.bridge=1 in my sysctl.conf file. The problem > > I'm having is it isn't blocking anything. I even tried taking out my > > ruleset and just using block in all and that still doesn't block anything. > > The bridging works fine but it doesn't block any packets at all. Anyone > > have any ideas what the problem might be? > > > > -Richard > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?019201c0f2f7$ac705220$0a00a8c0>