On Friday 05 December 2008 20:29:40 G magicman wrote:
> I have tried this it did not work and the Co-Lo people are convinced that
> sshd and sendmail need to be run out of inetd.conf for this to work.
That wouldn't explain sshd being linked against libwrap. Did you comment:
# The rules here work
Thank you for your help on this
Garrett
--- On Fri, 12/5/08, Mel <[EMAIL PROTECTED]> wrote:
From: Mel <[EMAIL PROTECTED]>
Subject: Re: IPFW Firewall Question
To: freebsd-questions@freebsd.org, [EMAIL PROTECTED]
Date: Friday, December 5, 2008, 6:02 AM
On Friday 05 December 2008 01:26:0
G magicman wrote:
> 1. I need help to reconfigure my firewall on the server using BSD's ipfw
What part do you need to reconfigure?
> 2. short of a reboot how do you start stop and restart the firewall
Very, very carefully. Until I gained some extensive experience with
IPFW, I would wrap the fi
On Friday 05 December 2008 01:26:04 G magicman wrote:
> Why because of the following:
>
> 1. Hosts.access on freebsd works on the Application Layer instead of the
> Network Layer Therefore Hosts.allow/hosts.deny no longer works the way i
> want and i do not feel like running Sendmail and sshd o
Often discussed and adviced...
On Thu, 4 Dec 2008 16:26:04 -0800 (PST), G magicman <[EMAIL PROTECTED]> wrote:
> here is part of the configuration file so far that the Co-lo people put in.
> [...]
> #!/usr/local/bin/bash
When possible, use the STANDARD form:
#!/bin/sh
Declare #!/usr/loc
1. I need help to reconfigure my firewall on the server using BSD's ipfw
here is part of the configuration file so far that the Co-lo people put in.
2. short of a reboot how do you start stop and restart the firewall
#!/usr/local/bin/bash
export IPF="ipfw -q add"
ports="11 21 22 23 25 37 4
Hello all,
I'm trying to use ng_netflow module along with PF+CARP implementation on
freebsd 6.2.
I understand from different posts that ng_netflow module is performing quite
well and does not add so much cpu load since packets are processed in the
kernel.
However, ng_netflow documentat
On Thu, Aug 02, 2007 at 10:04:20AM -0400, [EMAIL PROTECTED] wrote:
> It might not be as challenging as rolling your own... but have you
> considered using one of the ready-to-install BSD firewall/router
> packages like m0n0wall ? http://m0n0.ch/wall/
I have thinked about it. I have tried monowa
Hi
What I want to accomplish is a DMZ on the third ethernet on my
soekrisbox. I have done this before with OpenBSD and PF but now I
want to do it with FreeBSD and ipfw. My isp uses dhcp but they
don't change my ip so very often (almost never) so you can see it
like I have a static ip. First the ipn
On 2006-04-27 17:53, RW <[EMAIL PROTECTED]> wrote:
>On Thursday 27 April 2006 03:10, fbsd wrote:
>>H. Wade Minter wrote:
>>> I want all traffic allowed unfettered, except traffic from
>>> particular IPs to be completely blocked coming in.
>>>
>>> Can someone show me which ipf rules to use to get th
On Thursday 27 April 2006 17:53, RW wrote:
> On Thursday 27 April 2006 03:10, fbsd wrote:
> > > -Original Message-
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED] Behalf Of H. Wade
> > > Minter
> >>
> >> ..
> >>
> > > I want all traffic allowed unfettered, except traffic from
On Thursday 27 April 2006 03:10, fbsd wrote:
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] Behalf Of H. Wade
> > Minter
>> ..
> > I want all traffic allowed unfettered, except traffic from
> > particular
> > IPs to be completely blocked coming in.
> >
> >
block in quick on rl0 from x.x.x.x to any
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of H. Wade
Minter
Sent: Wednesday, April 26, 2006 8:47 PM
To: [EMAIL PROTECTED]
Subject: Simple firewall question: Blocking a handful of IPs
I'm not extr
I'm not extremely comfortable with doing firewall testing remotely on
production systems, but I need to set up some incoming IP blocks.
I've got a FreeBSD RELENG_5_4 system with public interface rl0.
I want all traffic allowed unfettered, except traffic from particular
IPs to be completely
On Oct 25, 2005, at 2:00 PM, Dave wrote:
Hi,
The netmask for my working setup is 255.255.0.0 same for the
nonworking setup. I am starting to wondering since the boxes are in
two different subnets if they need a route to each other?
Thanks.
Dave.
Yes, they do.
On Oct 25, 2005, at 9:59 AM, Dave wrote:
Hello,
Hello,
I've got a 5.4 box acting as a gateway/router and i have to set
up another for another network. This one will rely on a different
ip range, so i thought i'd hand it out while i'm doing the install
via my dhcp server, this par
Hello,
Hello,
I've got a 5.4 box acting as a gateway/router and i have to set up
another for another network. This one will rely on a different ip range, so
i thought i'd hand it out while i'm doing the install via my dhcp server,
this part works but the box can't get to the net to re
That is expected. After all that is all about proxy. When NAT is
enabled then you can ping outside world, that is fine. If you want to
provide transparent access to the clients, then you need to enable
NAT. You can control the type of access provided (browsing, IRC, IMs,
etc) by blocking(opening) t
Thank you, I am using the standard firewall and
firewall script that came with FreeBSD. By default,
everything on the firewall is set to open. I
attempting what you suggested (disabling nat) and I
could no longer get ou to see the net. I could ping
the FreeBSD box just fine, but nothing beyond t
On Sat, 11 Sep 2004 22:48:50 -0700 (PDT), JP <[EMAIL PROTECTED]> wrote:
> Hello Gang,
>
> I am a novice at this so please bear with me. I have
> successfully configured Squid, Nylon and my firewall,
> my question is how do I disable any net traffic that
> is not going through the proxy? It would
Hello Gang,
I am a novice at this so please bear with me. I have
successfully configured Squid, Nylon and my firewall,
my question is how do I disable any net traffic that
is not going through the proxy? It would be best for
all LAN traffic (telnet, ftp, chat, socks, etc) to
pass through the pro
Nicolas wrote:
I have just installed 5.2 on my machine and everything works. Now I am
trying to configure it and I want to put up a firewall but a everything
I read seem to refer to a dial up connection, I have a LAN connection.So
my question(s) is: is there a difference between a firewall for
On Wed, 28 Jan 2004 07:15:46 +0100
Nicolas <[EMAIL PROTECTED]> wrote:
> Hello.
> I have just installed 5.2 on my machine and everything works. Now I am
>
> trying to configure it and I want to put up a firewall but a
> everything I read seem to refer to a dial up connection, I have a LAN
> connec
On Wed, 28 Jan 2004 07:15:46 +0100
Nicolas <[EMAIL PROTECTED]> wrote:
> Hello.
> I have just installed 5.2 on my machine and everything works. Now I
> am trying to configure it and I want to put up a firewall but a
> everything I read seem to refer to a dial up connection, I have a
> LAN connectio
Hello.
I have just installed 5.2 on my machine and everything works. Now I am
trying to configure it and I want to put up a firewall but a everything
I read seem to refer to a dial up connection, I have a LAN connection.So
my question(s) is: is there a difference between a firewall for a dial
u
On Wed, 31 Dec 2003 09:59:10 -0500
"Xpression" <[EMAIL PROTECTED]> wrote:
> Hi list, I've two servers running some services, now I want
> to firewall both them, do I need to build it on router or in
> the FreeBSD box...thanks.
>
>
> ___
> [EMAIL PROTECT
On Wed, 31 Dec 2003, Xpression wrote:
> Hi list, I've two servers running some services, now I want
> to firewall both them, do I need to build it on router or in
> the FreeBSD box...thanks.
That is totally up to you.
If you plan to do it on one of your FreeBSD machines I believe you will
need t
Xpression wrote:
Hi list, I've two servers running some services, now I want
to firewall both them, do I need to build it on router or in
the FreeBSD box...thanks.
What's your network look like?
If each box has a publicly routable IP address,
I'd definitely put the firewall on each of them.
If
Hi list, I've two servers running some services, now I want
to firewall both them, do I need to build it on router or in
the FreeBSD box...thanks.
___
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscr
On Sat, Jul 12, 2003 at 12:33:47AM +0200, mempheria wrote:
> Q1:
> i just setup my first ipfw/with natd firewall :-)
> i run the preconfigured firewalltype called "simple"
> can anyone help me make a ruleset that blocks all to inside
> (except dhcp from my isp & ssh from inside) and allows everyt
Q1:
i just setup my first ipfw/with natd firewall :-)
i run the preconfigured firewalltype called "simple"
can anyone help me make a ruleset that blocks all to inside
(except dhcp from my isp & ssh from inside) and allows everything out?
when i try to learn, and look at the "simple" configuratio
31 matches
Mail list logo