Em 5/9/2010 12:53, Luigi Rizzo escreveu:
On Sat, Sep 04, 2010 at 10:58:44AM -0300, Anderson Eduardo wrote:
Hello developers,
I use the ipfw firewall with many tables and, I would like of able to
use it with name/alias instead of just numbers.
E.g:
lab# ipfw table 1 name lanetwork
Setting tabl
On 09/05/2010 11:47 PM, Adrian Chadd wrote:
I'd argue that "DNS" clue pushes the firewall out from a packet
inspection thing and into a user-space application inspection thing.
It also opens up an attack vector on your firewall.
Doug
--
Improve the effectiveness of your Internet pre
I'd argue that "DNS" clue pushes the firewall out from a packet
inspection thing and into a user-space application inspection thing.
DNS entries in filter rules doesn't work as well in all situations as
you'd like. :)
Adrian
(who has done this, and it doesn't quite work right in all situations
t
On 09/05/2010 11:53, Luigi Rizzo wrote:
> whereas one might want a more dynamic behaviour (e.g. refresh
> whenever the DNS response expires).
Lord that would be nice! if only PF had this ;)
--
jhell,v
___
freebsd-current@freebsd.org mailing list
http
On Sat, Sep 04, 2010 at 10:58:44AM -0300, Anderson Eduardo wrote:
> Hello developers,
>
> I use the ipfw firewall with many tables and, I would like of able to
> use it with name/alias instead of just numbers.
>
> E.g:
>
> lab# ipfw table 1 name lanetwork
> Setting table 1 to lanetwork
> lab# i
Hello developers,
I use the ipfw firewall with many tables and, I would like of able to
use it with name/alias instead of just numbers.
E.g:
lab# ipfw table 1 name lanetwork
Setting table 1 to lanetwork
lab# ipfw table lanetwork add 192.168.0.0/24
lab# ipfw table lanetwork list
192.168.0.0/24
