ipfw question
Sergey 'DoubleF' Zaharchenko
doublef at tele-kom.ru
Tue Nov 11 08:26:11 PST 2003
On Tue, 11 Nov 2003 12:00:10 -0000 "Simon Gray" <simong at desktop-guardian.com> probably wrote:
> >63000 0 0 deny log logamount 100 udp from any to any 119 via
> sis0
> >63000 24 1152 deny log logamount 100 tcp from any to any 135 via sis0
> >63000 0 0 deny log logamount 100 udp from any to any 135 via
> sis0
>
> >63000 is the rule number correct?
> >IM wondering what the other 2 places are..
> >24 and 1152
> if you're getting 0 on the other rules, it probably means its not running
> those rules.
> So therefore it won't actually log if it isn't get to that rule.
>
> also from the looks of things, if you're trying to block windows
> filesharing/smb you
> might want to block 135 - 139 both tcp/udp (instead of specifiying 135 in
> the rule add '135-139')
> rather than just 135 tcp/udp
>
> >Are they inbound and outbound?
> well depends (could be both yes), anything thats aimed at tcp 135 will be
> denied and
> logged
These are counts in packets and bytes.
>
> >Do I make any sence?
>
> Not really :/ whats the question?
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
--
DoubleF
BLISS is ignorance
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20031111/c5601855/attachment.bin
More information about the freebsd-questions
mailing list