ipfw config ....
R. Scott Evans
freebsd-questions at rsle.net
Wed Aug 6 15:45:54 UTC 2014
On 08/06/14 10:46, William A. Mahaffey III wrote:
> .... I am trying to get ipfw up & running on my newly minted FreeBSD 9.3
> workstation .... To that end, I added the following to my rc.conf &
> typed in 'service ipfw start', & the ssh connection I was/am working
> over hung/crashed ....
> firewall_type="/etc/ipfw.conf workstation"
> I'm fairly sure the 1st line needs to be there, guessing about the rest.
> I can't find out where logged messages are going (some come to the
> screen, a few to /var/log/messages, anything else: ????). Any clues
> appreciated :-) ....
Firewall type can only be one value. You have both /etc/ipfw.conf &
workstation. If you use /etc/ipfw.conf, then the rest of the options
other than firewall_enable are not needed as you will configure your own
rules directly in the ipfw.conf file.
However if you use type workstation instead, then to enable the
myservices, then you also need is firewall_allowservices which tells it
what IP network(s) are allowed to access the myservices. You can have
more than one IP network listed, but you separate each with a space and
not a comma. Likewise, the myservices are separated by spaces, not
firewall_myservices="NFS SSH NTP"
I don't use the logging to much myself so I may be missing something but
I believe the places to look would be /var/log/security and or execute
"ipfw show" depending on what info you're looking for.
More information about the freebsd-questions