Hi all,
I'm a bit confused here, please give me some light.
My problem is that after the rule 190 (see them bellow) I get this
error message:
ipfw: unrecognised option [-1] tcp
But it´s not only after 190, if I remove it the problem keeps.
Here is the begining of my ipfw rules file
#!bin/sh
/sbin/ipfw -q -f flush
cmd="/sbin/ipfw -q add"
pif="fxp0"
$cmd 00010 allow all from localhost to localhost via lo0
$cmd 00015 check-state
$cmd 00100 deny all from 192.168.0.0/16 to any in via $pif #RFC 1918
private IP
$cmd 00110 deny all from 172.16.0.0/12 to any in via $pif #RFC 1918
private IP
$cmd 00120 deny all from 10.0.0.0/8 to any in via $pif #RFC 1918
private IP
$cmd 00130 deny all from 127.0.0.0/8 to any in via $pif #loopback
$cmd 00140 deny all from 0.0.0.0/8 to any in via $pif #loopback
$cmd 00150 deny all from 169.254.0.0/16 to any in via $pif #DHCP
auto-config
$cmd 00160 deny all from 192.0.2.0/24 to any in via $pif #reserved for
docs
$cmd 00170 deny all from 204.152.64.0/23 to any in via $pif #Sun cluster
interconnect
$cmd 00180 deny all from 224.0.0.0/3 to any in via $pif #Class D & E
multicast
$cmd 00190 deny all from any to any frag in via $pif
$cmd 00200 deny tcp from any to any established in via $pif
$cmd 00210 allow tcp from me to any out via $pif setup keep-state uid root
- Marcelo
_______________________________________________
[email protected] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
