Hello, I try to setup ipfilter on Solaris 10 to protect my dialup machine. It should be quite simple--there is only one computer directly connected via dsl. Unfortunately, whatever I do it doesn't seem to work quite right.
I added a line to "/etc/ipf/pfil.ap" listing my network interface (sfe -1 0 pfil) and "ifconfig sfe1 modlist" shows: bash-3.00# ifconfig sfe1 modlist 0 arp 1 ip 2 pfil 3 sfe So I assume, that autopush is correctly configured. "svcs -l pfil" and "svcs -l ipfilter" show both as online and enabled. When I am connected to the internet via dsl "ifconfig -a" looks like this: bash-3.00# ifconfig -a lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1 inet 127.0.0.1 netmask ff000000 sfe1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2 inet 192.168.0.2 netmask ffffff00 broadcast 192.168.0.255 ether 0:2:e3:18:a6:ce sppp0: flags=10010008d1<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST,IPv4,FIXEDMTU> mtu 1492 index 3 inet 62.227.45.104 --> 217.5.98.147 netmask ff000000 To begin with I tried to prevent all traffic via ipf, using the following rules: bash-3.00# ipfstat -ih 0 block in all bash-3.00# ipfstat -oh 0 block out all But my network traffic flows unaffected as if no ipf is at work. I don't know why. I've read that I must configure sppp0 instead of sfe1 so I added "plink" to "/etc/ppp/options" which allows me to do: bash-3.00# ifconfig sppp0 modinsert [EMAIL PROTECTED] bash-3.00# ifconfig sppp0 modlist 0 ip 1 pfil 2 sppp but still nothing changed. Can anybody on this list please help me with this. I need ipfilter very much to block traffic on several open ports (eg. sunrpc). I don't know why it does not work. Thanks in advance! Regards, Albert
