Allow all traffic for a specific process
bvi at itouchlabs.com
Tue May 6 23:48:37 PDT 2003
One solution may be to run the process as a specific user, and allow all
traffic to/from that user ?
Have a look in the man page for details on using uid and gid for matching
Barry Irwin bvi at itouchlabs.com Tel:
Systems Administrator: Networks And Security
iTouch TAS http://www.itouchlabs.com Mobile: +27824457210
----- Original Message -----
From: "Daniela" <dgw at liwest.at>
To: <ipfw at FreeBSD.org>
Sent: Wednesday, May 07, 2003 12:08 AM
Subject: Allow all traffic for a specific process
> Hi all!
> Does IPFW have a feature to pass all traffic destined for ports a specific
> process has opened?
> The process opens many rapidly changing dynamic ports, UDP and TCP, so the
> keep-state rules are useless most of the time.
> If this is not possible, would it be easy to implement?
> I'm still a newbie, but if it's not too hard, I think I can do it.
> freebsd-ipfw at freebsd.org mailing list
> To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe at freebsd.org"
More information about the freebsd-ipfw