IPFilter

Andrej Bojda bojda at centrum.sk
Mon May 26 12:21:44 CEST 2003

Previous message: xntpd
Next message: Off-topic: www crawling
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dakujem za rady, IPFilter mi funguje bez problemov ruleset som
malo upravil do takejto podoby:

pass in quick on lo0 all
pass out quick on lo0 all

pass out quick on rl0 all keep state head 100
block in quick on rl0 all head 200

block out quick from 127.0.0.0/8 to any group 100
block out quick from any to 127.0.0.0/8 group 100

block in from #mojaIP/32 to any group 200
pass in quick proto tcp from any to any port = 22 keep state group 200

block return-rst in quick proto tcp all group 200
block return-icmp-as-dest(port-unr) in quick on rl0 proto udp all
group 200


Vsetko je: options  IPFILTER_DEFAULT_BLOCK  #vsetko zakazane, 
Moju pracovnu stanicu mam zapojenu do jednej siete s jednou
sietovou kartou (rl0).

Este raz dakujem.
Andrej

-------------------------------------------------------------------------------
Získajte supervýhodné ADSL ešte výhodnejšie. Ceny už od 399 Sk mesačne bez DPH.
Byť rýchly sa naozaj oplatí http://www.slovanet.sk/menu/adsl.html
-------------------------------------------------------------------------------

Previous message: xntpd
Next message: Off-topic: www crawling
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list