From owner-freebsd-questions Fri Jul 27 11:21:22 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.urx.com (mail.urx.com [63.170.19.36]) by hub.freebsd.org (Postfix) with ESMTP id BF30737B403 for ; Fri, 27 Jul 2001 11:21:19 -0700 (PDT) (envelope-from kstewart@urx.com) Received: from urx.com [206.159.132.160] by mail.urx.com with ESMTP (SMTPD32-6.06) id A11E72A102A2; Fri, 27 Jul 2001 11:21:18 -0700 Message-ID: <3B61B11B.CFC11D97@urx.com> Date: Fri, 27 Jul 2001 11:21:15 -0700 From: Kent Stewart X-Mailer: Mozilla 4.77 [en] (Windows NT 5.0; U) X-Accept-Language: en,pdf MIME-Version: 1.0 To: Raymond Kohler Cc: freebsd-questions@freebsd.org Subject: Re: setting up a very simple firewall References: <005d01c116cd$edda54a0$ea01a8c0@cox.rr.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Raymond Kohler wrote: > > I want to set up an ipfw firewall. This should be easy since I'm running no > services on that box and just want to allow all outgoing traffic and no > incoming traffic (except responses from connections I make, of course). The > only trouble is that I have dynamic IP (it's on DHCP) and no "real" > hostname. How do I write these rules? > Start with what Dan has on http://www.mostgraveconcern.com/freebsd/ipfw.html It isn't as simple as you think because most operations require a handshake of one form or another. You have to account for these operations. Kent -- Kent Stewart Richland, WA Cool site http://www.bmwfilms.com mailto:kbstew99@hotmail.com http://kstewart.urx.com/kstewart/index.html http://daily.daemonnews.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message