improve ipfw rules

Martin Jessa freebsd at yazzy.org
Wed Feb 25 04:11:14 PST 2004


Hi.

Take a look at:
http://jk.yazzy.org/articles/openbsd/kazaa.html
Jochem describes there how to block Kazaa with snort on OpenBSD.
Hope this helps.


On Tue, 24 Feb 2004 10:09:24 -0500
Richy Kim <rkim at sandvine.com> wrote:

> >> 3. I'm intrested in blocking kazaa/P2P trafic with IPFW any help in this
> issue
> you could possibly block connections at known p2p ports.
> deny tcp from any to any 6699 step
> but most of the newer protocols use dynamic ports and in turn, are
> configurable. 
> so ipfw isn't exactly ideal on it's own for this.
> 
> -r.
> 
> 
> -----Original Message-----
> From: Pons [mailto:pons at gmx.li]
> Sent: Tuesday, February 24, 2004 6:33 AM
> To: freebsd-security at freebsd.org
> Subject: improve ipfw rules
> 
> 
> I have configured a FreeBSD 5.1 rel box 2 NIC's (Ext.ip/Int.ip)
> with ipfw/natd/squid the setup is working
> 
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"




More information about the freebsd-security mailing list