From owner-freebsd-questions Thu Mar 29 8: 0: 6 2001 Delivered-To: freebsd-questions@freebsd.org Received: from intersys.com (gateway.intersys.com [198.133.74.253]) by hub.freebsd.org (Postfix) with ESMTP id 0F85B37B71F for ; Thu, 29 Mar 2001 08:00:03 -0800 (PST) (envelope-from bojar@intersys.com) Received: by gateway.intersys.com id <115354>; Thu, 29 Mar 2001 11:04:04 -0500 Message-Id: <01Mar29.110404est.115354@gateway.intersys.com> From: "E. Jordan Bojar" To: Subject: rc.firewall vs. ipfw Date: Thu, 29 Mar 2001 11:02:28 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG OK, last stupid question of the week, I hope. I'm setting up a single box on a hosting rack I don't own, and I want to lock it down best I can. I just want to let SSH, HTTP, and SMTP in for now. I understand how to do it with ipfw, but I assume those settings are lost in the case of accidental reboot, right?. If so, is the syntax for editing rc.firewall any different than ipfw? The "client" vs "simple" distinction also confuses me a tad, as I'm neither protecting a netowrk behind me nor do I have a network I trust in front, so neither of these prebuilts really work for me. Can I just have rc.firewall reference another file with ipfw rules, or replace it altogether with this? Any help would be greatly appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message