Configuring JAIL to bind on lo0 interface
bonifaktuura at inbox.lv
bonifaktuura at inbox.lv
Sat Dec 20 13:36:07 PST 2003
> so allow rules will look something along the lines of:
>
> pass in quick on fxp0 proto tcp from any to 127.0.0.53 port = 1053 flags S
> keep state
> pass in quick on fxp0 proto udp from any to 127.0.0.53 port = 1053 keep
> state
well, in case if he has block by default policy he will need smth like
this, too:
pass out quick on fxp0 proto tcp from 127.0.0.53 to any port = 53 flags S keep state
pass out quick on fxp0 proto udp from 127.0.0.53 to any port = 53 keep state
and changing 'any' to dns servers he's using as masters is good idea.
p.
This message contains no viruses.
Guaranteed by Kaspersky Anti-Virus.
http://www.antivirus.lv
More information about the freebsd-security
mailing list