Date: Wed, 09 Apr 2003 15:05:39 +1000 From: "Mark Gladman" <mark_gladman@hotmail.com> To: freebsd-questions@freebsd.org Subject: Firewall testing issues. Message-ID: <F139G8XHXMH3jCNAv9t00002fdc@hotmail.com>
next in thread | raw e-mail | index | archive | help
Hi there, I pointed this question at the freebsd-newbies list previously, and only afterwards realised that it's probably more technical than should be posted to that list.. oops.. Anyway, I've got an external ADSL router which uses a static route to forward packets(?) to a FreeBSD box using ipfw. I've configured ipfw to some extent (still some stuff not working..), but I'm currently tweaking the config for it. Now, what happens when I try and get someone to portscan it from the outside world (using nmap), instead of it portscanning the FreeBSD box, it scans the ADSL router, even though I thought that the static route just handed all incoming packets to the FreeBSD box? The ADSL router has NAT'ing enabled on it, as opposed to the FreeBSD machine doing the NAT'ing. (This was the way that was recommended to me, and seems to work). So I'm just wondering.. how can I tell if the firewall is actually working or not? because portscanning it internally won't be a problem since all the internal computers have the ability to do pretty much whatever they want, and doing it externally just hits the ADSL router. Hope this makes some sense! Cheers, Mark _________________________________________________________________ MSN Instant Messenger now available on Australian mobile phones. Go to http://ninemsn.com.au/mobilecentral/hotmail_messenger.asp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F139G8XHXMH3jCNAv9t00002fdc>