Date: Mon, 22 Apr 2002 02:40:54 -0400 (EDT) From: Peter Leftwich <Hostmaster@Video2Video.Com> To: Taylor Dondich <thexder@lvcm.com> Cc: FreeBSD LIST <FreeBSD-Questions@FreeBSD.Org> Subject: Re: Fw: A problem with people reaching my server Message-ID: <20020422022623.I28349-100000@earl-grey.cloud9.net> In-Reply-To: <000701c1e751$8bc204c0$0d1cea18@penguin>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 18 Apr 2002, Taylor Dondich wrote: > yes, but like I said, I have no firewall options enabled in rc.conf, wouldn't that allow people to at least access httpd on the box? Or does freebsd now by default not allow it? > Taylor Dondich Nobody can access "httpd" unless you have "httpd" running. man inetd If you are truly concerned about security, I suggest you read up in the www.freebsd.org handbook about the firewall options in /etc/rc.conf -- Peter Leftwich President & Founder Video2Video Services Box 13692, La Jolla, CA, 92039 USA +1-413-403-9555 > ----- Original Message ----- > From: "Peter Leftwich" <Hostmaster@Video2Video.Com> > To: "Taylor Dondich" <thexder@lvcm.com> > Cc: "FreeBSD LIST" <FreeBSD-Questions@FreeBSD.Org> > Sent: Thursday, April 18, 2002 7:56 PM > Subject: Re: Fw: A problem with people reaching my server > > > On Thu, 18 Apr 2002, Taylor Dondich wrote: > > > I don't believe so. FIREWALL options are not enabled in rc.conf, > however, I do notice as when I'm shutting down the server, it's saving firewall states. How do I check to see if it is running, and how to disable that from happening? > > > Taylor Dondich > > > > From /etc/rc.conf > > firewall_enable="YES" # Set to YES to enable firewall functionality > > firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall > > firewall_type="client" # Firewall type (see /etc/rc.firewall) > > > > There are choices such as simple, open, client, etc - mine is actually set to NO because I found this all too confusing (setting "internal" IPs and configuring /etc/rc.firewall to my specs). Instead, I learned as much as I could about /etc/inetd.conf and have enabled syslogd to log LOTS of stuff, such as rude people portscanning me :) > > Oh and the choices go on in /etc/rc.conf > > firewall_quiet="YES" # Set to YES to suppress rule display > > firewall_logging="YES" # Set to YES to enable events logging > > firewall_flags="" # Flags passed to ipfw when type is a file > > > > > > ----- Original Message ----- > > > > From: "Kent Stewart" <kstewart@owt.com> > > > > To: "Taylor Dondich" <thexder@lvcm.com> > > > > Cc: <questions@FreeBSD.ORG> > > > > Sent: Thursday, April 18, 2002 3:48 PM > > > > Subject: Re: A problem with people reaching my server > > > > > Taylor Dondich wrote: > > > > > > Okay, so I've thought I configured my server correctly, but I must > be missing something. People can ping my server just fine, however trying to access any services (web, smtp, pop3) are futile. Yet, they can ping it. There isn't a kern_securelevel, so I dunno if that'd be it (I don't even know if that'd be related). However, I can access the services just fine on the network here. It just seems that anyone outside my network can't access it. Any ideas? Things I can provide to help figure it out? > > > > > Are you running something like ipfw or some other firewall. You could have some parameters there that need adjusting. > > > > > Kent Stewart of Richland, WA > > > > > http://users.owt.com/kstewart/index.html > > What do you mean by problem with people "reaching" your server? What port? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020422022623.I28349-100000>