From owner-freebsd-questions Sat Jan 12 4: 1:44 2002 Delivered-To: freebsd-questions@freebsd.org Received: from kabel203069.kabel.utwente.nl (kabel203069.kabel.utwente.nl [130.89.203.69]) by hub.freebsd.org (Postfix) with ESMTP id 8AE1F37B405 for ; Sat, 12 Jan 2002 04:01:41 -0800 (PST) Received: by kabel203069.kabel.utwente.nl (Postfix, from userid 1000) id 927D21F91; Sat, 12 Jan 2002 13:01:39 +0100 (CET) Date: Sat, 12 Jan 2002 13:01:39 +0100 From: Rogier Steehouder To: Chris Appleton Cc: freebsd-questions@freebsd.org Subject: Re: ipfw rules Message-ID: <20020112130139.A688@localhost> Mail-Followup-To: Rogier Steehouder , Chris Appleton , freebsd-questions@freebsd.org References: <20020111200507.5340.qmail@web14804.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020111200507.5340.qmail@web14804.mail.yahoo.com>; from appleton_chris@yahoo.com on Fri, Jan 11, 2002 at 12:05:07PM -0800 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On 11-01-2002 12:05 (-0800), Chris Appleton wrote: > allow tcp from any 21 to a.b.c.d This means allow connections from port 21 on any machine to any port on a.b.c.d, so you completely opened up your system. What you're probably looking for is: allow tcp from any to a.b.c.d 21 Allow any machine to connect to only port 21 on a.b.c.d With kind regards, Rogier Steehouder -- ___ _ -O_\ // | / Rogier Steehouder //\ / \ r.j.s@gmx.net // \ <---------------------- 25m ----------------------> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message