[FUG-BR] Ajuda com ipfw
Bandeira
gnu.groups em gmail.com
Sábado Setembro 27 18:36:08 BRT 2008
O que acharam, ta bom? É para desktop.
ipfw add 200 allow ip from any to any via lo0
ipfw add 300 deny log logamount 1000 ip from any to 127.0.0.0/8
ipfw add 310 deny log logamount 1000 ip from 224.0.0.0/4 to any in
ipfw add 500 check-state
ipfw add 600 allow tcp from any to any established
ipfw add 700 allow tcp from any to any out keep-state
ipfw add 710 allow udp from any to any out keep-state
ipfw add 800 allow udp from any to any in frag
ipfw add 900 deny log tcp from any to any established in
ipfw add 1100 allow icmp from any to any icmptypes 0
ipfw add 1110 allow icmp from any to any
ipfw add 5100 allow tcp from any to any dst-port 53
ipfw add 5110 allow udp from any to any dst-port 53
ipfw add 5120 allow tcp from any to any dst-port 53 out keep-state
ipfw add 5130 allow udp from any to any dst-port 53 out keep-state
ipfw add 10000 allow icmp from any to any icmptypes 3
ipfw add 10100 allow icmp from any to any icmptypes 4
ipfw add 10200 allow icmp from any to any icmptypes 8 out
ipfw add 10210 allow icmp from any to any icmptypes 0 in
ipfw add 10300 allow icmp from any to any icmptypes 11 in
ipfw add 65534 deny log logamount 1000 ip from any to any
ipfw add 65501 allow udp from me to any keep-state
ipfw add 65534 deny log ip from any to any
ipfw add 65535 allow ip from any to any
ipfw add 5150 allow tcp from any to any dst-port 16000
ipfw add 5200 allow tcp from any to any dst-port 32700
ipfw add 5300 allow tcp from any to any dst-port 32703
ipfw add 5400 allow tcp from any to any dst-port 32715
ipfw add 5500 allow tcp from any to any dst-port 51413
Mais detalhes sobre a lista de discussão freebsd