Date: Fri, 04 Mar 2005 15:19:57 -0600 From: Jason Hunt <jhunt@akula.org> To: sn1tch <dot.sn1tch@gmail.com> Cc: freebsd-ipfw@freebsd.org Subject: Re: Quick Firewall Question Message-ID: <BE4E2D1D.1E10D%jhunt@akula.org> In-Reply-To: <a82b9719050304131714dd6b52@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks, I will give it a shot.. > From: sn1tch <dot.sn1tch@gmail.com> > Reply-To: sn1tch <dot.sn1tch@gmail.com> > Date: Fri, 4 Mar 2005 16:17:07 -0500 > To: Jason Hunt <jhunt@akula.org> > Cc: <freebsd-ipfw@freebsd.org> > Subject: Re: Quick Firewall Question > > you could try: > > $oip = outside IP > $oif = outside interface > > ipfw add deny all from any to $oip 80 in via $oif > > or whatever port > > > On Fri, 04 Mar 2005 15:13:18 -0600, Jason Hunt <jhunt@akula.org> wrote: >> Chuck, >> >> Thanks for your quick response. What I really need to do is to block >> specific ports on my outside interface NIC. In fact, I need to keep the 2nd >> NIC which is internal open to those ports. >> >>> From: Charles Swiger <cswiger@mac.com> >>> Date: Fri, 4 Mar 2005 16:09:17 -0500 >>> To: Jason Hunt <jhunt@akula.org> >>> Cc: <freebsd-ipfw@freebsd.org> >>> Subject: Re: Quick Firewall Question >>> >>> On Mar 4, 2005, at 4:01 PM, Jason Hunt wrote: >>>> Greetings, >>>> >>>> I have a machine that I need to quickly block outside access to (just >>>> internal access from 2nd NIC). Is there any quick examples of how I >>>> can add >>>> a rule to specifically block a port on specific IP? >>> >>> ipfw add 100 deny tcp from 1.2.3.4 any to 192.168.1.2 11 >>> >>> This will block connections from IP 1.2.3.4 to your host's port 11, >>> assuming your local IP was 192.168.1.2 >>> >>> -- >>> -Chuck >>> >>> >> >> _______________________________________________ >> freebsd-ipfw@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw >> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" >> > > > -- > You've officially been Gmailed > _______________________________________________ > freebsd-ipfw@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw > To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?BE4E2D1D.1E10D%jhunt>