ipfw firewall_type 'OPEN'
marius at nuenneri.ch
Mon May 18 12:45:23 UTC 2009
On Mon, May 18, 2009 at 14:04, Sebastian Mellmann
<sebastian.mellmann at net.t-labs.tu-berlin.de> wrote:
> Hi everyone!
> I've set the following parameters in rc.conf:
> When I took a look at the ruleset I see:
> 00010 allow ip from any to any via lo0
> 65000 allow ip from any to any
> 65535 deny ip from any to any
> The problem is, if I execute my own ipfw script and flush the rules via
> 'ipfw -q -f flush'
> 'ipfw -q -f pipe flush'
> I'm loosing my ssh connection to that machine.
> Is there any chance to remove the rule 65535 or change it to allow
> instead of deny?
> I've got another FreeBSD machine here (7.0) where the default setting is
> '65535 allow ip from any to any', when using firwall_type OPEN.
> Both rc.conf files are the same!
There is a kernel option to do, see ipfw(4).
More information about the freebsd-net