Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 18 Apr 2006 02:24:19 +0100
From:      RW <list-freebsd-2004@morbius.sent.com>
To:        freebsd-questions@freebsd.org
Subject:   Re: IPFW Problems
Message-ID:  <200604180224.20749.list-freebsd-2004@morbius.sent.com>
In-Reply-To: <8921D35B-1F12-4212-9B62-0CC1CC8F5AE5@allresearch.com>
References:  <8921D35B-1F12-4212-9B62-0CC1CC8F5AE5@allresearch.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Monday 17 April 2006 22:29, Noah Silverman wrote:

> ipfw add 0430 allow log tcp from any to me 22 in via bge0 setup limit
> src-addr 2
> ipfw add 00499 deny log all from any to any in via bge0
>
> In theory, this should allow in SSH and nothing else.
>

What happens when you replace  "limit src-addr 2" with keep-state?

If that works replace it with "limit src-addr 200" and work down/



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200604180224.20749.list-freebsd-2004>