Internet firewall
Giorgos Keramidas
keramida at ceid.upatras.gr
Fri Aug 19 21:46:44 GMT 2005
On 2005-08-20 09:12, Gareth Campbell <gcampbell at orcon.net.nz> wrote:
> Hey guys,
>
> I'm a newbie and have got my box all set up with FreeBSD 5.4, fluxbox
> wm, firefox, thunderbird etc... It's all looking awesome, with
> transparency, and working well. I run it on dial-up ppp but haven't set
> up any firewall. Should I be setting one up?
Yes, definitely.
It takes about 4-5 seconds when I connect with my dialup account from
home and then incoming connections start coming from spyware, trojans
and misc. other scanners :-)
> If so, do I use one of the bundled firewalls or can someone recommend
> one that would suit my purposes? This is a stand-alone box, not on a
> home network.
The Handbook has a relatively nice chapter on firewalls.
At my home workstation (that uses a dialup connection to the world) and
on my laptop (that spends a lot of time connected in a corporate
network), I use the PF firewall with exactly the same configuration on
both machines:
- Allow all outgoing connections
- Allow *some* incoming connections
- Block everything else
The ``/etc/pf.conf'' file can be found at:
http://people.freebsd.org/~keramida/files/pf.conf
This and the Handbook chapter about PF will give a good head start :)
- Giorgos
More information about the freebsd-questions
mailing list