From owner-freebsd-ipfw Thu Jul 26 22:13:45 2001 Delivered-To: freebsd-ipfw@freebsd.org Received: from opensrs.saignon.net (216-120-17-31.dsl.cust.tfb.com [216.120.17.31]) by hub.freebsd.org (Postfix) with ESMTP id 0307C37B406 for ; Thu, 26 Jul 2001 22:13:42 -0700 (PDT) (envelope-from tony@saignon.net) Received: from tsaignmobl (216-120-17-17.dsl.cust.tfb.com [216.120.17.17]) by opensrs.saignon.net (8.11.4/8.11.3) with SMTP id f6R5F2t00556 for ; Thu, 26 Jul 2001 22:15:03 -0700 (PDT) (envelope-from tony@saignon.net) From: Tony Saign To: Subject: Simple ruleset?? Date: Thu, 26 Jul 2001 22:13:32 -0700 Message-ID: <000001c1165a$e1e14870$0600a8c0@tsaignmobl> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have ipfw running on my box with the default_to_deny option set. I need a proven ruleset that would allow any outbound traffic, and incoming on ports 22, 25, 53, 80, and 110 only. I am questioning whether my current ruleset is adequate. Everything is working, but I am having problems with DNS. When I attempt an 'nslookup' from another system, it just times out with an 'unspecified error' Anyone have a good link for info in ipfw?? Thanks in advance for any info. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message