IP Firewall blocks cvsup
Rob
europax at comcast.net
Sun Sep 19 06:44:33 PDT 2004
Seems to work with everything else incl. ftp. What am I doing wrong?
Thanks, Rob.
-------------- next part --------------
block in log all
pass out all
pass out on lo all
pass in on lo all
pass out quick on bfe0 proto tcp/udp from any to any port > 1024
pass in quick on bfe0 proto icmp all icmp-type 0
pass in quick on bfe0 proto icmp all icmp-type 3
pass in quick on bfe0 proto icmp all icmp-type 11
block in on bfe0 proto tcp all flags S/SA
block out on bfe0 proto tcp all flags SA/SA
pass in quick on bfe0 proto tcp from any to any port = 22 flags S/SA keep state
pass in quick on bfe0 proto tcp from any to any port = 25 flags S/SA keep state
pass out on bfe0 proto tcp all keep state
block return-rst in on bfe0 proto tcp from any to any port = 113
pass in on bfe0 proto tcp/udp from any port = 53 to any
pass in on bfe0 proto tcp/udp from any port = 67 to any
pass out on bfe0 proto tcp/udp from any port = 68 to any
pass in on bfe0 proto tcp from any port = 80 to any
#block out quick on bfe0 proto tcp from any port 5999><6011 to any
#block out quick on bfe0 proto tcp from any port 5899><5911 to any
#block out quick on bfe0 from any port = 2049 to any
#block out quick on bfe0 from any port 136><140 to any
More information about the freebsd-questions
mailing list