Date: Mon, 19 Oct 2009 16:00:56 -0500 From: Matthew Walker <drinking.coffee@gmail.com> To: freebsd-ipfw@freebsd.org Subject: Re: IPFW closing range of ports Message-ID: <4ADCD388.5040109@gmail.com> In-Reply-To: <25964869.post@talk.nabble.com> References: <25964869.post@talk.nabble.com>
next in thread | previous in thread | raw e-mail | index | archive | help
You could starve it by using a pipe, allocate 16 kbit/sec. Then technically you aren't blocking it. ipfw add 1000 pipe 10 tcp from any to any 14500-65535 out ipfw pipe 10 config bw 16k queue 100 mask dst-ip 0xff000000 Otherwise, you can block the ports: ipfw add 1000 deny tcp from any to any 14500-65535 out Depends on how much of a BOFH mood your are in that day. -- Matthew PeterJJ wrote: > I'm new to this, so go easy please. > > I have put in place a very basic ipfw ruleset in my place of employment. > To this i have been asked to block out all peer to peer sharing to ports in > the range of 14500-65000. > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4ADCD388.5040109>