Date: Sat, 8 Jun 2019 06:34:45 -0400 From: <starikarp@dismail.de> To: "ipfw@FreeBSD.org" <ipfw@FreeBSD.org> Subject: nameserver - block some sites Message-ID: <20190608063445.3c3b128b@dismail.de>
next in thread | raw e-mail | index | archive | help
Hi!
I am using default settings for ipfw-workstation on my FreeBSD-12.0
Release.
Mine nameserver is dns.watch and I have a problem because firewal block
me some sites:
kernel: ipfw: 65500 Deny UDP 84.200.69.80:53 192.168.1.2:32998 in via
bge0
Bellow is part of reassemble from the rc.firewall and my question is if
is correct order - I read somewhere tha "check-state" should be after
"reass".
# Allow packets for which a state has been built. ${fwcmd} add
check-state # reassemble incoming fragmented packets
${fwcmd} add reass all from any to any in
Is there any option to resolve my problem with blocking some sites,
please?
Thank you.
--
by ajtiM
----------------------
FreeBSD 12.0-Release
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20190608063445.3c3b128b>