Date: Tue, 9 Dec 2003 12:23:12 +0200 From: Gregory Edigarov <greg@profi.kharkov.ua> To: freebsd-ipfw@freebsd.org Subject: ipfw keep-state (ASAP anwser need) Message-ID: <20031209102312.GB529@profi.kharkov.ua>
next in thread | raw e-mail | index | archive | help
Hello,
The folowing is a fragment of my rc.firewall which must
allow all
traffic in and out of my named.
----
ipfw add 4100 allow udp from me to any 53 keep-state
ipfw add 4200 allow udp from any to me 53
ipfw add 4300 allow udp from me 53 to any
---
This is a fragment from my kernel configuration:
---
options IPFIREWALL #firewall
options IPFIREWALL_VERBOSE #enable logging to syslogd(8)
options IPFIREWALL_FORWARD #enable transparent proxy support
options IPFIREWALL_VERBOSE_LIMIT=100 #limit verbosity
options IPDIVERT #divert sockets
options IPSTEALTH
options ICMP_BANDLIM
options DUMMYNET
options BRIDGE
options IPFW2
---
It doesn't work. What am I missing?
--
With best regards,
Gregory Edigarov
------------------------------------------------------------------------------
profi.kharkov.ua Systems Administrator
------------------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031209102312.GB529>