From owner-freebsd-questions  Tue Apr 14 13:27:50 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id NAA06606
          for freebsd-questions-outgoing; Tue, 14 Apr 1998 13:27:50 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id UAA06590
          for <freebsd-questions@FreeBSD.ORG>; Tue, 14 Apr 1998 20:27:43 GMT
          (envelope-from julian@whistle.com)
Received: (from daemon@localhost)
	by alpo.whistle.com (8.8.5/8.8.5) id NAA28561;
	Tue, 14 Apr 1998 13:20:10 -0700 (PDT)
Received: from current1.whistle.com(207.76.205.22)
 via SMTP by alpo.whistle.com, id smtpd028559; Tue Apr 14 20:20:08 1998
Message-ID: <3533C3C1.41C67EA6@whistle.com>
Date: Tue, 14 Apr 1998 13:14:57 -0700
From: Julian Elischer <julian@whistle.com>
Organization: Whistle Communications
X-Mailer: Mozilla 3.0Gold (X11; I; FreeBSD 2.2.5-RELEASE i386)
MIME-Version: 1.0
To: spork <spork@cncn.com>
CC: fbsdqs <freebsd-questions@FreeBSD.ORG>
Subject: Re: IPFW
References: <Pine.BSF.3.96.980414160653.570A-100000@pigstuy>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Spike Gronim wrote:
> 
> Hello.
> 
>         Just for practice I am configuring a fire wall on my computer. I
> don't need one, but I want to get the experience under my belt. I have a
> shell script I wish to execute to set up the rules to my firewall.
> it reads:
> 
> #!/bin/sh
> 
> ipfw add deny tcp from localhost to panix.com
> ipfw add deny tcp from panix.com to localhost
> ipfw add allow ip from any to any

add line numbers after the word 'add'
you are not telling the system where to insert the rules.

> 
>  I have shell access on panix.com and can therefore attempt to test my
> firewall from their machinces. ipfw ignores the first two commands, so my
> firewall ends up looking like this:
> 
> 00000 allow ip from any to any
> 65534 deny ip from any to any
> 
> What is wrong with my first two rules? Thank you.
> 
>         -Spike Gronim
>          spork@cncn.com
> 
>                 "Hacker, n: One who hacks real good"
>                         --Computer Contradictionary
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message