On Tue, 2003-01-07 at 01:02, Jonathan Belson wrote:
> Since the machine is a gateway, it has two network cards. Will
> 'me' match *both* IP address or just the first one it comes
> across? I only really want it to match the IP address of the
> external interface, not the internal one.
How about
On Monday 06 January 2003 11:23 am, Jonathan Belson wrote:
> Ceri Davies wrote:
> >>
> >>Since the machine is a gateway, it has two network cards. Will
> >>'me' match *both* IP address or just the first one it comes
> >>across? I only really want it to match the IP address of the
> >>external int
Fernando Gleiser wrote:
ifconfig xl0 | awk '/^\tinet / {print $2}'
Nice! My awk isn't what it should be...
--Jon
http://www.witchspace.com
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message
On Mon, 6 Jan 2003, Jonathan Belson wrote:
> Jack L. Stone wrote:
> > The best way to do this is to use "awk" to determine and set a variable for
> > the external IP every time it changes and then refer to that variable in
> > your rules.
>
> ifconfig | grep ^xl0 -1 | tail -n 1 | awk '{ print $2
At 05:53 PM 1.6.2003 +, Jonathan Belson wrote:
>Jack L. Stone wrote:
>> The best way to do this is to use "awk" to determine and set a variable for
>> the external IP every time it changes and then refer to that variable in
>> your rules.
>
>ifconfig | grep ^xl0 -1 | tail -n 1 | awk '{ print $2
Jack L. Stone wrote:
The best way to do this is to use "awk" to determine and set a variable for
the external IP every time it changes and then refer to that variable in
your rules.
ifconfig | grep ^xl0 -1 | tail -n 1 | awk '{ print $2 }'
Any neater way? :-)
--Jon
http://www.witchspace.com
Dan Nelson wrote:
me is me. Maybe the "recv | xmit | via {ifX | if* | ipno | any}"
options will help? What exactly are you trying to allow/block?
My firewall rules are based on the 'simple' pattern in rc.firewall.
I've got stuff like this to explicitly allow certain connections:
# ssh
In the last episode (Jan 06), Jonathan Belson said:
> Ceri Davies wrote:
> >On Mon, Jan 06, 2003 at 05:02:01PM +, Jonathan Belson wrote:
> >>I've just been looking into the 'me' option for ipfw:
> >>
> >>me matches any IP address configured on an interface in the
> >> system. The ad
At 05:23 PM 1.6.2003 +, Jonathan Belson wrote:
>Ceri Davies wrote:
>> On Mon, Jan 06, 2003 at 05:02:01PM +, Jonathan Belson wrote:
>>
>>>I've just been looking into the 'me' option for ipfw:
>>>
>>>me matches any IP address configured on an interface in the
>>>system. The add
Ceri Davies wrote:
On Mon, Jan 06, 2003 at 05:02:01PM +, Jonathan Belson wrote:
I've just been looking into the 'me' option for ipfw:
me matches any IP address configured on an interface in the
system. The address list is evaluated at the time the
packet is analysed.
Si
On Mon, Jan 06, 2003 at 05:02:01PM +, Jonathan Belson wrote:
> I've just been looking into the 'me' option for ipfw:
>
> me matches any IP address configured on an interface in the
> system. The address list is evaluated at the time the
> packet is analysed.
>
> Since th
Hiya
My ISP uses DHCP to allocate IP numbers, so currently every time
the IP changes, I have to manually change my firewall rules.
I've just been looking into the 'me' option for ipfw:
me matches any IP address configured on an interface in the
system. The address list is evaluate
12 matches
Mail list logo
