ipfw config ....

[R. Scott Evans]

On 08/06/14 10:46, William A. Mahaffey III wrote:
> .... I am trying to get ipfw up & running on my newly minted FreeBSD 9.3
> workstation .... To that end, I added the following to my rc.conf &
> typed in 'service ipfw start', & the ssh connection I was/am working
> over hung/crashed ....
>
> rc.conf:
>
> firewall_enable="YES"
> firewall_type="/etc/ipfw.conf  workstation"
> firewall_quiet="NO"
> firewall_logdeny="YES"
> firewall_myservices="NFS,SSH,NTP"
>
> I'm fairly sure the 1st line needs to be there, guessing about the rest.
> I can't find out where logged messages are going (some come to the
> screen, a few to /var/log/messages, anything else: ????). Any clues
> appreciated :-) ....

Firewall type can only be one value.  You have both /etc/ipfw.conf & 
workstation.  If you use /etc/ipfw.conf, then the rest of the options 
other than firewall_enable are not needed as you will configure your own 
rules directly in the ipfw.conf file.

However if you use type workstation instead, then to enable the 
myservices, then you also need is firewall_allowservices which tells it 
what IP network(s) are allowed to access the myservices.  You can have 
more than one IP network listed, but you separate each with a space and 
not a comma.  Likewise, the myservices are separated by spaces, not 
commas.

firewall_enable="YES"
firewall_type="workstation"
firewall_quiet="NO"
firewall_logdeny="YES"
firewall_allowservices="192.168.0.0/23 172.16.1.0/24"
firewall_myservices="NFS SSH NTP"

I don't use the logging to much myself so I may be missing something but 
I believe the places to look would be /var/log/security and or execute 
"ipfw show" depending on what info you're looking for.