> Hopefully you'll find this link helpful: > http://www.defcon1.org/html/Networking_Articles/Firewall-Ipfw/firewall-ipfw.html. > > -- > Dmitry
yep, I did begin with that, but was not liking the fact that it was an exclusive firewall (the end rule is to accept anything) rather than an inclusive one. I realized I could use "me" for my IP address (making it easy to write rules even my ISP give me a dynamic IP address). After reading it, looking at: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipfw.html was not looking so strange anymore, and contain a good inclusive example. I did modify it a bit, mostly to accept FTP connections. I realize this make much less secure, but I really like to use FTP links in my browser. I'll attach it to my message, so that wiser one than me could warn me if I made something stupid. I use /etc/rc.local to load the rules with a script containing: sh /etc/ipfw.rules Thanks for your help! -- http://www.fastmail.fm - Send your email first class
ipfw.rules
Description: Binary data
_______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
