Quick Firewall Question
Jason Hunt
jhunt at akula.org
Fri Mar 4 21:13:23 GMT 2005
Chuck,
Thanks for your quick response. What I really need to do is to block
specific ports on my outside interface NIC. In fact, I need to keep the 2nd
NIC which is internal open to those ports.
> From: Charles Swiger <cswiger at mac.com>
> Date: Fri, 4 Mar 2005 16:09:17 -0500
> To: Jason Hunt <jhunt at akula.org>
> Cc: <freebsd-ipfw at freebsd.org>
> Subject: Re: Quick Firewall Question
>
> On Mar 4, 2005, at 4:01 PM, Jason Hunt wrote:
>> Greetings,
>>
>> I have a machine that I need to quickly block outside access to (just
>> internal access from 2nd NIC). Is there any quick examples of how I
>> can add
>> a rule to specifically block a port on specific IP?
>
> ipfw add 100 deny tcp from 1.2.3.4 any to 192.168.1.2 11
>
> This will block connections from IP 1.2.3.4 to your host's port 11,
> assuming your local IP was 192.168.1.2
>
> --
> -Chuck
>
>
More information about the freebsd-ipfw
mailing list