/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! */
Gday,
I read through the HOWTO and have read through the mailing list archive.. I
simply want a quick sanity check on my ipfwadm lines. If this is not the
appropriate place to ask this question i apologise and would like to be pointed
to the right place.. Here goes:
I have a linux box (IP 192.168.0.1)
Other machines use the above machine as there gateway.
No restrictions to the other machines can be setup as follows:
ipfwadm -I -a accept -V 192.168.0.1 -P all -S 0.0.0.0/0 -D 0.0.0.0/0
ipfwadm -F -a m -S 192.168.0.1/32 -D 0.0.0.0/0
correct?
If I want to block all access to the other machines it would be as follows:
ipfwadm -I -a reject -S 192.168.0.1/32 -D 0.0.0.0/0
or flush???
ipfwadm -I -f
ipfwadm -I -p accept
ipfwadm -O -f
ipfwadm -O -p accept
ipfwadm -F -f
ipfwadm -F -p accept
And if i simply want to block certain ports to the other machines (say 25, 80,
110) I would do the following:
ipfwadm -I -i reject -P tcp -S 0/0 -D 192.168.0.1/32 25 80 110
And lastly, If one of the other machines has an IP address of 192.168.0.123 I
could block certain ports via:
ipfwadm -I -i reject -P tcp -s 0/0 -D 192.168.0.123/32 25 80 110
Is this all correct? Am i missing something?
Any help greatly appreciated.
-matt
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES
UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
