Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 11 Nov 2003 18:49:17 +0300
From:      Sergey 'DoubleF' Zaharchenko <doublef@tele-kom.ru>
To:        "Simon Gray" <simong@desktop-guardian.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: ipfw question
Message-ID:  <20031111184917.5a2b61f0.doublef@tele-kom.ru>
In-Reply-To: <01ae01c3a84b$5bb0c1b0$1100a8c0@dtg17>
References:  <006201c3a7ff$a9b227b0$6701a8c0@tacstation> <01ae01c3a84b$5bb0c1b0$1100a8c0@dtg17>
next in thread | previous in thread | raw e-mail | index | archive | help 
--Signature=_Tue__11_Nov_2003_18_49_17_+0300_4/c6Af8qCwtlsue2
Content-Type: text/plain; charset=US-ASCII
Content-Disposition: inline
Content-Transfer-Encoding: 7bit

On Tue, 11 Nov 2003 12:00:10 -0000 "Simon Gray" <simong@desktop-guardian.com> probably wrote:

> >63000    0      0     deny log logamount 100 udp from any to any 119 via
> sis0
> >63000   24   1152  deny log logamount 100 tcp from any to any 135 via sis0
> >63000    0      0     deny log logamount 100 udp from any to any 135 via
> sis0
> 
> >63000 is the rule number correct?
> >IM wondering what the other 2 places are..
> >24  and 1152
> if you're getting 0 on the other rules, it probably means its not running
> those rules.
> So therefore it won't actually log if it isn't get to that rule.
> 
> also from the looks of things, if you're trying to block windows
> filesharing/smb you
> might want to block 135 - 139 both tcp/udp (instead of specifiying 135 in
> the rule add '135-139')
>  rather than just 135 tcp/udp
> 
> >Are they inbound and outbound?
> well depends (could be both yes), anything thats aimed at tcp 135 will be
> denied and
> logged

These are counts in packets and bytes.

> 
> >Do I make any sence?
> 
> Not really :/ whats the question?
> 
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
> 


-- 
DoubleF
BLISS is ignorance

--Signature=_Tue__11_Nov_2003_18_49_17_+0300_4/c6Af8qCwtlsue2
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)

iD8DBQE/sQUKwo7hT/9lVdwRAiNKAJ9bUUyB70aQ04fWs6UF6UvX4SqX1ACdHo16
SfLooxo4snASAr+S0rD51cc=
=vs57
-----END PGP SIGNATURE-----

--Signature=_Tue__11_Nov_2003_18_49_17_+0300_4/c6Af8qCwtlsue2--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031111184917.5a2b61f0.doublef>