Is this a hole in my firewall?
Kees Plonsz
kees at jeremino.homeunix.net
Tue Nov 30 08:00:26 PST 2004
On Tuesday 30 November 2004 15:37, Jonathon McKitrick wrote:
> On Mon, Nov 29, 2004 at 04:14:07PM +0100, Ruben de Groot wrote:
> : > : allow ip from ${INTERNAL_NET} to any keep-state out xmit tun0
> : > :
> : > : where INTERNAL_NET would be e.g. 192.168.0.0/24
>
> I was checking out the man page, and I'm a little unclear on whether I want
> 'xmit' or 'via' in this rule. Does it make much of a practical difference?
If you want to check your firewall with a scan from "nmap", go to:
http://jeremino.homeunix.net/portscan.php
More information about the freebsd-questions
mailing list