Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 27 Jan 2014 19:53:40 +0900 (JST)
From:      Ryuji MATSUMOTO <matumoto@pluto.ai.kyutech.ac.jp>
To:        freebsd-users-jp@freebsd.org
Subject:   [FreeBSD-users-jp 95125] =?iso-2022-jp?b?W0ZZSV0gTlRQGyRCJE4bKEJERG9TGyRCJE43bxsoQg==?=
Message-ID:  <20140127.195340.74754437.matumoto@pluto.ai.kyutech.ac.jp>
next in thread | raw e-mail | index | archive | help 
$B>>85!w$I$C$+$NBg3X$G$9!#(B

$B:G6a(BNTP$B$N(BDDoS$B$N7o$,%K%e!<%9$K$J$C$F$$$^$9$,(B

  $B0-MQ$5$l$k;~9oF14|!J(BNTP$B!K%5!<%P!<!"?7<j$N(BDDoS$B967b$G!H2C32<T!I$K$J$k$*$=$l$b(B 
  http://itpro.nikkeibp.co.jp/article/COLUMN/20140122/531463/

$B$=$3$G$G$9$,!"(B(FreeBSD$B$G(BNAT$B$r;H$o$J$$%k!<%?$r:n$C$F$$$kJ}$O>/$J$$$H$O(B
$B;W$$$^$9$,(B) NAT$B$r;H$o$J$$%k!<%?$N>l9g!"(BFreeBSD$B$N(B/etc/rc.firewall$B$O(B
Default$B$G$O0J2<$N$h$&$J%k!<%k$K$J$C$F$$$k$h$&$G$9!#(B

        # Allow NTP queries out in the world
        ${fwcmd} add pass udp from any to any 123 keep-state

$B$3$3!"$[$H$s$I$N4D6-$G$O!"$3$s$J$U$&$K=q$-49$($?$[$&$,NI$$$N$G$O$J$$$G(B
$B$7$g$&$+!#(B

        ${fwcmd} add pass udp from $B<+<R$,M=Ls$7$F$$$k(BGlobalIP$B%M%C%H%o!<%/%"%I%l%9(B/MASK to any 123 keep-state
        ${fwcmd} add reset log udp from any to any 123

$B$J$*!"(BFreeBSD$B$N(BFirewall$B$N%k!<%k$r$h$/$o$+$C$F$J$$?M4V$,=q$$$F$$$^$9$N(B
$B$G!"4V0c$C$?BP1~$G$7$?$i!"8f;XE&2<$5$$!#(B

--
$B>>85N4Fs(B

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20140127.195340.74754437.matumoto>