Date: Wed, 26 Nov 2008 21:40:27 +0800 From: Fbsd1 <fbsd1@a1poweruser.com> To: freebsd-questions@freebsd.org Subject: firewall rules for bitlord, yahoo, limewire Message-ID: <492D51CB.9000201@a1poweruser.com>
next in thread | raw e-mail | index | archive | help
These applications have predefined ports they use to start up the bi-directional packet conversation. But them unsolicited packeted come in from other pc nodes to share data using a wide range of high port numbers. IPFW, IPF, and PF don't seem to have a rule option to allow packs in/out based on program name that started the conversation. I thought i read in openbsd pf manual that pf state processing will allow applications like limewire to function normally by accepting the inbound high number port to pass through the firewall. I have inclusive firewall rule set which means only packets matching the rules are passed through. The inbound hight port numbers are blocked by design. How do other firewall users code rules to allow limewire to work?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?492D51CB.9000201>