Date: Thu, 17 Feb 2000 23:49:18 -0500 From: "Crist J. Clark" <cjc@cc942873-a.ewndsr1.nj.home.com> To: Sabre <sabre@sabresdomain.com> Cc: Omachonu Ogali <oogali@intranova.net>, FreeBSD Question List <freebsd-questions@FreeBSD.ORG> Subject: Re: Quick IPFW rule help... Message-ID: <20000217234918.D53575@cc942873-a.ewndsr1.nj.home.com> In-Reply-To: <Pine.BSF.4.21.0002171048370.7190-100000@sabre1.sabresdomain.com>; from sabre@sabresdomain.com on Thu, Feb 17, 2000 at 10:53:01AM -0500 References: <Pine.BSF.4.10.10002171019060.91789-100000@hydrant.intranova.net> <Pine.BSF.4.21.0002171048370.7190-100000@sabre1.sabresdomain.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Feb 17, 2000 at 10:53:01AM -0500, Sabre wrote:
> I allow all outgoing connections through:
> $fwcmd add pass all from any to any out xmit ${oif}
>
> and I allow packets to pass on the inside interface using:
> $fwcmd add pass all from any to any via ${iif}
>
> I've actually changed the rule so that it looks like this:
> $fwcmd add pass log udp from any to any 17590-17599 in recv ${oif}
> $fwcmd add pass log tcp from any to any 17590-17599 in recv ${oif} setup
>
> because I thought they might be doing some TCP transfers as
> well. Basically I just need to open those ports up completely (which is
> what I thought I was doing :/ ) I'm also probably going to open the port
> for a Quake 3 server, so I need to be able to do this with the firewall :/
> TIA,
If you want to open them completely, why not just,
$fwcmd add pass log udp from any to any 17590-17599
$fwcmd add pass log tcp from any to any 17590-17599
--
Crist J. Clark cjclark@home.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000217234918.D53575>