Ficou pior? ipfw add 200 allow ip from any to any via lo0 ipfw add 300 deny log logamount 1000 ip from any to 127.0.0.0/8 ipfw add 310 deny log logamount 1000 ip from 224.0.0.0/4 to any in ipfw add 500 check-state ipfw add 600 allow tcp from any to any established ipfw add 700 allow tcp from any to any out keep-state ipfw add 710 allow udp from any to any out keep-state
ipfw add 800 deny all from any to any in frag ipfw add 900 deny tcp from any to any established in ipfw add 5100 allow tcp from any to any dst-port 53 ipfw add 5110 allow udp from any to any dst-port 53 ipfw add 5150 allow tcp from any to any dst-port 16000 ipfw add 5200 allow tcp from any to any dst-port 32700 ipfw add 5300 allow tcp from any to any dst-port 32703 ipfw add 5400 allow tcp from any to any dst-port 32715 ipfw add 5500 allow tcp from any to any dst-port 51413 ipfw add 10200 allow icmp from any to any icmptypes 0 in ipfw add 10210 deny icmp from any to any in ipfw add 10220 allow icmp from any to any icmptypes 8 out ipfw add 10230 deny icmp from any to any out ipfw add 65501 allow udp from me to any keep-state ipfw add 65534 deny all from any to any ------------------------- Histórico: http://www.fug.com.br/historico/html/freebsd/ Sair da lista: https://www.fug.com.br/mailman/listinfo/freebsd