ipfw dont view some rules

Jean Hernandez ean79 at yahoo.com
Fri Jan 9 03:31:33 PST 2004 

i have a server with an a ipfw enable, the config in
the rc.conf is it:


jean# cat /etc/rc.conf
[B[B[B
# -- sysinstall generated deltas -- # Mon Oct 13
22:25:43 2003
# Created: Mon Oct 13 22:25:43 2003
# Enable network daemons for user convenience.
# Please make all changes to this file, not to
/etc/defaults/rc.conf.
# This file now contains just the overrides from
/etc/defaults/rc.conf.
usbd_enable="YES"
# -- sysinstall generated deltas -- # Mon Oct 13
22:39:12 2003
ifconfig_xl0="DHCP"
hostname="jean.elementos.org"
sendmail_enable="NO"
log_in_vain="YES"
accounting_enable="YES"
sshd_enable="YES"
firewall_enable="YES"
firewall_type="/etc/firewall.rules"
firewall_script= "/etc/rc.firewall"

I want a 4 outsides ip can open some ports, like irc,
http, ftp and ssh. i make a rule set in a config file
was called firewall.rules in the /etc folder. When i
exec a ipfw show, i just view 4 rules, the first 3,
and the ultimate. i dont know was is wrong. Thats my
ruleset. I want  the irc was open completly. the
another services not. 

add allow all from any to any
add check-state
add allow tcp from me to any keep-state establish
add deny tcp from any to any
add allow tcp from 168.32.171.1/24 to me 21 - 22
add allow tcp from 196.112.160.1/24 to me 21 - 22
add allow tcp from 200.160.215.1/24 to me 21 - 22
add allow tcp from any to any 80
add allow tcp from any to any 6660 - 7000
add allow all from 124.128.57.162 to me
add allow all from me to 24.128.57.162
add allow udp from 168.32.171.1/24 to me 21 - 22
add allow udp from 196.112.160.1/24 to me 21 - 22
add allow udp from 200.160.215.1/24 to me 21 - 22
add deny icmp from any to me
add allow icmp from me to any icmptype 3,4,11
add allow icmp from 168.32.171.1/24 to me icmptype
3,4,11
add allow icmp from 196.112.160.1/24 to me icmptype
3,4,11
add allow icmp from 200.160.215.1/24 to me icmptype
3,4,11
add pass all from any to any


Regards guys,
Jean Hernandez

__________________________________
Do you Yahoo!?
Yahoo! Hotjobs: Enter the "Signing Bonus" Sweepstakes
http://hotjobs.sweepstakes.yahoo.com/signingbonus

More information about the freebsd-questions mailing list