I am running ipfilter 3.4.28 on Solaris 8, with hme0 as my only interface, say the IP is 2.2.2.2. I want to be able to access the sshd and web server remotely from 1.1.1.1, and exclude all other traffic. My rule-set is letting me connect once the the ssh server, and then seemingly never again. Tcpdump on 1.1.1.1 shows my packets going out, but I don't get a response from 2.2.2.2.
I have installed ipfilter from the packages on www.maraudingpirates.org. What am I doing wrong? Thank you in advance for any suggestions... block in on hme0 block in quick on hme0 from 192.168.0.0/16 to any block in quick on hme0 from 172.16.0.0/12 to any block in quick on hme0 from 10.0.0.0/8 to any block in quick on hme0 from 127.0.0.0/8 to any block in quick on hme0 from 0.0.0.0/8 to any block in quick on hme0 from 169.254.0.0/16 to any block in quick on hme0 from 192.0.2.0/24 to any block in quick on hme0 from 204.152.64.0/23 to any block in quick on hme0 from 224.0.0.0/3 to any #### pass in quick on hme0 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 22 flags S keep state keep frags pass in quick on hme0 proto tcp from 1.1.1.1/32 to 2.2.2.2/32 port = 80 flags S keep state keep frags #### pass in quick on hme0 proto icmp from 1.1.1.1/32 to 2.2.2.2/32 icmp-type 11 pass in quick on hme0 proto icmp from 1.1.1.1/32 to 2.2.2.2/32 icmp-type 0 # Allow traffic out pass out quick on hme0 proto tcp from any to any flags S keep state keep frags pass out quick on hme0 proto udp from any to any keep state pass out quick on hme0 proto icmp from any to any keep state pass out quick on lo0 pass in quick on lo0
