Date: Sun, 19 Feb 95 14:08:50 IST From: "Ugen J.S.Antsilevich" <ugen@netvision.net.il> To: Pete Shipley <shipley@merde.dis.org> Cc: freebsd-questions@freefall.cdrom.com Subject: RE: ipfw problem Message-ID: <Chameleon.950219141245.ugen@ugen.NetManage.co.il>
next in thread | raw e-mail | index | archive | help
Hi!
I figured out just now what was the problemm..it is simple as hell
and probably should be in the ipfw.FAQ i will write..i also CCing this to
-current as i realised just now you are the third guys saying the same thing...
> deny tcp from 0.0.0.0:255.255.255.255 to merde.dis.org 111
^^^^^^^^^^^^^^^^^^^^^^^^^^!!!!!!!!!!WRONG!!!!!!!!!!!
Think about it,what did you meant to say: any host,right???Now when you want to
put network,say 18.1.2.XXX you say it like: 18.1.2.0:255.255.255.0
Any host is equivalent to network of all hosts so it is:
X.Y.Z.W:0.0.0.0!!!!!!,and in the simplest case you put it as: 0/0
i.e. the entry should be added as:
deny tcp from 0/0 to host.you.needed.org
> deny tcp from 0.0.0.0:255.255.255.255 to 0.0.0.0:255.255.255.255 515
deny tcp from 0/0 to 0/0
That's it..try:)
--
-=Ugen J.S.Antsilevich=-
NetVision - Israeli Commercial Internet | Learning
E-mail: ugen@NetVision.net.il | To Fly. [c]
Phone : +972-4-550330 |
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Chameleon.950219141245.ugen>