Date: Fri, 14 Jan 2000 15:19:38 -0800 From: -DAL- <dylanal@earthlink.net> To: m <kamidesu@hotpop.com> Cc: freebsd-questions@FreeBSD.ORG, freebsd-newbies@FreeBSD.ORG Subject: Re: IPFW question Message-ID: <20000114151938.A436@cbl-dylanal.hs.earthlink.net> In-Reply-To: <20000112030449.69F52639DC@zagnut.hotpop.com>; from m on Tue, Jan 11, 2000 at 10:04:49PM -0500 References: <006a01bf5c11$6bdb5940$8b2fa8c0@wipsys.ge.com> <20000111182944.B64680@hades.hell.gr> <20000112030449.69F52639DC@zagnut.hotpop.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Yes as long as the allow line comes first, for it it matches the deny line first it will never get to the allow line. -DAL- add allow ip from any to any via lo0 add deny ip from any to 10.0.0.1 On Tue, Jan 11, 2000 at 10:04:49PM -0500, m wrote: > > If I deny ip access to an adress (10.0.0.1) that includes ALL the ports, > of course. from 0 to 65535. > > And "allow all via lo0" means anything passing thru lo0 (localhost, > 127.0.0.1) is allowed, so I can connect to anything IF I'm using Lo0, > even to the specifically denied ip or port numbers. > > Right? > > Thank you. Bye. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message -- -DAL- dylanal@NOSPAMearthlink.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-newbies" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000114151938.A436>