From owner-freebsd-questions Sat Jan 27 23:53:37 2001 Delivered-To: freebsd-questions@freebsd.org Received: from omta02.mta.everyone.net (sitemail.everyone.net [216.200.145.35]) by hub.freebsd.org (Postfix) with ESMTP id 7A59437B400 for ; Sat, 27 Jan 2001 23:53:19 -0800 (PST) Received: from sitemail.everyone.net (reports [216.200.145.62]) by omta02.mta.everyone.net (Postfix) with ESMTP id A2F821C3A83 for ; Sat, 27 Jan 2001 23:53:16 -0800 (PST) Received: by sitemail.everyone.net (Postfix, from userid 99) id 6193C36F9; Sat, 27 Jan 2001 23:53:16 -0800 (PST) Content-Type: text/plain Content-Disposition: inline Mime-Version: 1.0 X-Mailer: MIME-tools 4.104 (Entity 4.117) Date: Sat, 27 Jan 2001 23:53:15 -0800 (PST) From: Benjamin Ossei To: questions@freebsd.org Subject: firewall rules Reply-To: ben@cahostnet.net X-Originating-Ip: [24.180.132.54] Message-Id: <20010128075316.6193C36F9@sitemail.everyone.net> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I have a small home network that I'm going to use ipfw and nat for. I was wondering if anyone had a custom ruleset that I could use as a baseline to write my own rules. I am currently using the rc.firewall and I'm a little confused as to what they are trying to do. They stop spoofing on the private networks but I get permission deny when I run the "simple" profile for natd and other things. I also can not go out of the firewall. I know this will take time to tweak. Any help will be appreciated. If I can take the spoofing config out or make it work I'll like to do that. I will like to protect my network from others trying to fake it like they on my network so I feel I should keep it. Thanks _____________________________________________________________ ========GET YOUR FREE E-MAIL============ http://freemail.cahostnet.net Web Hosting http://www.cahostnet.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message