svn commit: r39266 - head/zh_CN.GB2312/books/handbook/firewalls

Fukang Chen loader at FreeBSD.org
Wed Jul 25 19:16:40 UTC 2012 

Author: loader
Date: Wed Jul 25 19:16:39 2012
New Revision: 39266
URL: http://svn.freebsd.org/changeset/doc/39266

Log:
  MFen: r37165 -> r38826
  Fix typo. [1]
  
  Merging work done by:  delphij
  Submitted by:          Sutra Zhou (zhoushuqun at gmail dot com) [1]
  Obtained from:         The FreeBSD Simplified Chinese Project

Modified:
  head/zh_CN.GB2312/books/handbook/firewalls/chapter.sgml

Modified: head/zh_CN.GB2312/books/handbook/firewalls/chapter.sgml
==============================================================================
--- head/zh_CN.GB2312/books/handbook/firewalls/chapter.sgml	Wed Jul 25 13:24:34 2012	(r39265)
+++ head/zh_CN.GB2312/books/handbook/firewalls/chapter.sgml	Wed Jul 25 19:16:39 2012	(r39266)
@@ -2,7 +2,7 @@
      The FreeBSD Documentation Project
      The FreeBSD Simplified Chinese Project
 
-     Original Revision: 1.96
+     Original Revision: r38826
      $FreeBSD$
 -->
 
@@ -316,7 +316,7 @@ device pfsync</programlisting>
     </sect2>
 
     <sect2>
-      <title>¿ÉÓÃµÄ rc.conf Ñ¡Ïî</title>
+      <title>¿ÉÓÃµÄ <filename>rc.conf</filename> Ñ¡Ïî</title>
 
       <para>The following &man.rc.conf.5; statements configure
 	<acronym>PF</acronym> and &man.pflog.4; at boot:</para>
@@ -352,8 +352,10 @@ pflog_flags=""                  # Æô¶¯Ê±
 	<para>ÔÚä¯ÀÀ <ulink
 	    url="http://www.openbsd.org/faq/pf/">PF FAQ</ulink> ʱ£¬
           Çëʱ¿Ì×¢Òⲻͬ°æ±¾µÄ &os; ¿ÉÄÜ»áʹÓò»Í¬°æ±¾µÄ PF¡£ Ä¿Ç°£¬
-	  &os; ʹÓõÄÊÇÓë
-	  OpenBSD&nbsp;4.1 ÏàͬµÄ <acronym>PF</acronym>°æ±¾¡£</para>
+	  &os;&nbsp;8.<replaceable>X</replaceable> ºÍ֮ǰµÄϵͳʹÓõÄÊÇÓë
+	  OpenBSD&nbsp;4.1 Ïàͬ°æ±¾µÄ <acronym>PF</acronym>¡£
+          &os;&nbsp;9.<replaceable>X</replaceable> ºÍÖ®ºóµÄϵͳʹÓõÄÊÇÓë
+          OpenBSD&nbsp;4.5 Ïàͬ°æ±¾µÄ <acronym>PF</acronym>¡£</para>
       </warning>
 
       <para>&a.pf; ÊÇÒ»¸öÌáÓйØÅäÖÃʹÓà <acronym>PF</acronym>
@@ -389,7 +391,7 @@ pflog_flags=""                  # Æô¶¯Ê±
 
 	    <row>
 	      <entry><command>pfctl <option>-F</option> all <option>-f</option> /etc/pf.conf</command></entry>
-	      <entry>Çå³þËùÓйæÔò (nat, filter, state, table, µÈµÈ¡£)
+	      <entry>Çå³ýËùÓйæÔò (nat, filter, state, table, µÈµÈ¡£)
 		²¢¶ÁÈ¡ <filename>/etc/pf.conf</filename></entry>
 	    </row>
 
@@ -589,7 +591,7 @@ options IPFILTER_DEFAULT_BLOCK</programl
     </sect2>
 
     <sect2>
-      <title>¿ÉÓÃµÄ rc.conf Ñ¡Ïî</title>
+      <title>¿ÉÓÃµÄ <filename>rc.conf</filename> Ñ¡Ïî</title>
 
       <para>ÒªÔÚÆô¶¯Ê±¼¤»î IPF£¬ ÐèÒªÔÚ <filename>/etc/rc.conf</filename>
 	ÖÐÔö¼ÓÏÂÃæµÄÉèÖãº</para>
@@ -999,12 +1001,12 @@ sh /etc/ipf.rules.script</programlisting
 	ÕâЩÊDZàдÃ÷ʾÔÊÐí·À»ðǽ¹æÔò¼¯µÄ»ù±¾ÒªËØ¡£</para>
 
       <warning>
-	<para>µ±¶Ô·À»ðǽ¹æÔò½øÐвÙ×÷ʱ£¬ Ó¦¸Ã
+	<para>µ±¶Ô·À»ðǽ¹æÔò½øÐвÙ×÷ʱ£¬ Ó¦
 	    <emphasis>½÷É÷ÐÐÊÂ</emphasis>¡£ ijЩÅäÖÿÉÄÜ»á
 	    <emphasis>½«Äú·´ËøÔÚ</emphasis> ·þÎñÆ÷ÍâÃæ¡£
-	    °²È«Æð¼û£¬ Äú¿ÉÒÔ¿¼ÂÇÔÚµÚÒ»´Î½øÐзÀ»ðǽÅäÖÃʱÔÚ±¾µØ¿ØÖÆ̨ÉÏ£¬
-	    ¶ø²»ÊÇÔ¶³Ì£¬ ÀýÈçͨ¹ý
-	    <application>ssh</application> À´½øÐС£</para>
+	  ±£ÏÕÆð¼û£¬ Äú¿ÉÒÔ¿¼ÂÇÔÚµÚÒ»´Î½øÐзÀ»ðǽÅäÖÃʱÔÚ±¾µØ¿ØÖÆ̨ÉÏ£¬
+	  ¶ø²»ÊÇÔ¶³Ì£¬ Èçͨ¹ý
+	  <application>ssh</application> À´½øÐС£</para>
       </warning>
     </sect2>
 
@@ -1324,11 +1326,11 @@ sh /etc/ipf.rules.script</programlisting
 
       <para>Èç¹û¼Ç¼µÄ°üµÄ¶Ë¿ÚºÅ²¢²»ÊÇÄúËùÖªµÀµÄ£¬
 	¿ÉÒÔÔÚ <filename>/etc/services</filename> »ò <ulink
-	  url="http://www.securitystats.com/tools/portsearch.php"></ulink>
+	  url="http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers"></ulink>
 	Á˽â¶Ë¿ÚºÅͨ³£µÄÓÃ;¡£</para>
 
-      <para>²Î¿¼ÏÂÃæµÄÍøÒ³£¬ Á˽âľÂíʹÓõĶ˿ڣº<ulink
-	  url="http://www.simovits.com/trojans/trojans.html"></ulink>¡£</para>
+      <para>²Î¿¼ÏÂÃæµÄÍøÒ³£¬ Á˽âľÂíʹÓõĶ˿ڣº <ulink
+	  url="http://www.sans.org/security-resources/idfaq/oddports.php"></ulink>¡£</para>
 
       <para>ÏÂÃæÊÇÎÒÔÚ×Ô¼ºµÄϵͳÖÐʹÓõÄÍêÕûµÄ£¬ ·Ç³£°²È«µÄ
 	<literal>Ã÷ʾÔÊÐí</literal> ·À»ðǽ¹æÔò¼¯¡£ Ö±½ÓʹÓÃÕâ¸ö¹æÔò¼¯²»»á¸øÄúÔì³ÉÎÊÌ⣬
@@ -2496,10 +2498,10 @@ ks="keep-state"        # just too lazy t
 	  ÎÞЧµÄ°üÓ¦±»¶ªÆúºÍÏûʧ¡£ ÕâÑù£¬ ¹¥»÷Õß±ãÎÞ·¨ÖªµÀ°üÊÇ·ñµ½´ïÁËÄúµÄϵͳ¡£
 	  ¹¥»÷Õ߶ÔϵͳÁ˽âµÄÔ½ÉÙ£¬ Æä¹¥»÷µÄÄѶÈÒ²¾ÍÔ½´ó¡£ Èç¹û²»ÖªµÀ¶Ë¿ÚºÅ£¬
 	  ¿ÉÒÔ²éÔÄ <filename>/etc/services/</filename> »òµ½ <ulink
-	    url="http://www.securitystats.com/tools/portsearch.php"></ulink>
+	    url="http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers"></ulink>
 	  ²¢²éÕÒһ϶˿ںţ¬ ÒÔÁ˽âÆäÓÃ;¡£ ÁíÍ⣬
 	  ÄúÒ²¿ÉÒÔÔÚÕâ¸öÍøÒ³ÉÏÁ˽ⳣ¼ûľÂíËùʹÓõĶ˿ڣº <ulink
-	    url="http://www.simovits.com/trojans/trojans.html"></ulink>¡£</para>
+	    url="http://www.sans.org/security-resources/idfaq/oddports.php"></ulink>¡£</para>
       </sect3>
 
       <sect3>
@@ -2571,7 +2573,7 @@ pif="dc0"     # public interface name of
 # Interface facing Public Internet (Outbound Section)
 # Interrogate session start requests originating from behind the
 # firewall on the private network or from this gateway server
-# destine for the public Internet.
+# destined for the public Internet.
 #################################################################
 
 # Allow out access to my ISP's Domain name server.
@@ -2609,7 +2611,7 @@ pif="dc0"     # public interface name of
 # Allow out Time
 &dollar;cmd 00260 allow tcp from any to any 37 out via &dollar;pif setup keep-state
 
-# Allow out nntp news (i.e. news groups)
+# Allow out nntp news (i.e., news groups)
 &dollar;cmd 00270 allow tcp from any to any 119 out via &dollar;pif setup keep-state
 
 # Allow out secure FTP, Telnet, and SCP
@@ -2899,7 +2901,7 @@ pif="rl0"     # public interface name of
 # Allow out Time
 &dollar;cmd 090 &dollar;skip tcp from any to any 37 out via &dollar;pif setup keep-state
 
-# Allow out nntp news (i.e. news groups)
+# Allow out nntp news (i.e., news groups)
 &dollar;cmd 100 &dollar;skip tcp from any to any 119 out via &dollar;pif setup keep-state
 
 # Allow out secure FTP, Telnet, and SCP

More information about the svn-doc-all mailing list