IPFW Ruleset Help
Lee Harr
missive at hotmail.com
Tue Jun 1 14:57:17 PDT 2004
>Hello. Running FreeBSD 4.10. After I reboot with my
>new ipfw.rules I can't load any webpages. I didn't try
>by IP address cause I can't remember any off top at
>the moment.
Is the firewall logging working?
You need lines in your syslog.conf like ...
!ipfw
*.* /var/log/ipfw.log
Then you can tail -f /var/log/ipfw.log
and try to access the web page. You should see packets being
blocked and figure out which rules are wrong / which rules you
need to add.
>add 00310 allow tcp from 205.152.133.254 to any in
>recv xl0
>add 00311 allow tcp from 205.152.132.235 to any in
>recv xl0
>
>add 00320 allow udp from 205.152.133.254 53 to any in
>recv xl0
>add 00321 allow udp from 205.152.132.235 53 to any in
>recv xl0
>
You let the DNS responses in, but I do not see any place
where you let your requests out.
_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail
More information about the freebsd-questions
mailing list