From owner-freebsd-questions  Fri Jun 20 17:42:43 1997
Return-Path: <owner-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.5/8.8.5) id RAA05320
          for questions-outgoing; Fri, 20 Jun 1997 17:42:43 -0700 (PDT)
Received: from awfulhak.demon.co.uk (awfulhak.demon.co.uk [158.152.17.1])
          by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA05301
          for <freebsd-questions@FreeBSD.ORG>; Fri, 20 Jun 1997 17:42:34 -0700 (PDT)
Received: from awfulhak.demon.co.uk (localhost [127.0.0.1])
	by awfulhak.demon.co.uk (8.8.5/8.8.5) with ESMTP id BAA04082;
	Sat, 21 Jun 1997 01:30:23 +0100 (BST)
Message-Id: <199706210030.BAA04082@awfulhak.demon.co.uk>
X-Mailer: exmh version 1.6.9 8/22/96
To: dan <dan@joshua.sns.org>
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Restricting client access 
In-reply-to: Your message of "Fri, 20 Jun 1997 18:03:54 EDT."
             <Pine.BSF.3.95q.970620180117.7409B-100000@joshua.sns.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Sat, 21 Jun 1997 01:30:23 +0100
From: Brian Somers <brian@awfulhak.org>
Sender: owner-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

> 
> I am trying to figure out how I can restrict the types of clients/services
> that are allowed to connect to a given IP. For example if I had a virtual
> hosted website and ftp site on my machine, how could i prevent someone
> from telneting to www.mysite.org or making a http connection to
> ftp.mysite.org?

man ipfw.  You'll need to enable it in your kernel too - it's not there
by default.

> 	Thanks! Dan

-- 
Brian <brian@awfulhak.org>, <brian@freebsd.org>
      <http://www.awfulhak.org>
Don't _EVER_ lose your sense of humour....