想請問一下ipfw設定, 有關我這樣怎麼掛了QQ - BBS
By Quanna
at 2007-12-07T16:33
at 2007-12-07T16:33
Table of Contents
真不好意思,因為我在設定機器
沒想到一設以後重開我就連不上了
想請問一下這樣設有沒有問題
IPF="ipfw -q add"
ipfw -q -f flush
#loopback
$IPF 10 allow all from any to any via lo0
$IPF 20 deny all from any to 127.0.0.0/8
$IPF 30 deny all from 127.0.0.0/8 to any
$IPF 40 deny tcp from any to any frag
# statefull
#$IPF 50 check-state
#$IPF 60 allow tcp from any to any established
#$IPF 70 allow all from any to any out keep-state
#[ssh]
$IPF 130 allow tcp from any to $OIP 22 setup
#[send mail]
$IPF 130 allow tcp from $OIP to any 25 setup
#[http]
$IPF 140 allow tcp from any to $OIP 80 setup
#[ssl]
$IPF 160 allow tcp from any to $OIP 443 setup
# Allow Normal icmp
$IPF pass allow from any to any icmptype 3
$IPF pass allow from any to any icmptype 4
$IPF pass allow from any to any icmptype 11
$IPF 190 deny tcp from any to any in setup
$IPF 200 allow tcp from any to any setup
#Allow NTP queries out in the world
$IPF 210 allow udp from ${OIP} to any 123
# deny and log everything
$IPF 500 deny log all from any to any
$OIP 是我那張網卡的ip..
想請問是否有什麼問題..已經連不上了orz..謝謝
--
沒想到一設以後重開我就連不上了
想請問一下這樣設有沒有問題
IPF="ipfw -q add"
ipfw -q -f flush
#loopback
$IPF 10 allow all from any to any via lo0
$IPF 20 deny all from any to 127.0.0.0/8
$IPF 30 deny all from 127.0.0.0/8 to any
$IPF 40 deny tcp from any to any frag
# statefull
#$IPF 50 check-state
#$IPF 60 allow tcp from any to any established
#$IPF 70 allow all from any to any out keep-state
#[ssh]
$IPF 130 allow tcp from any to $OIP 22 setup
#[send mail]
$IPF 130 allow tcp from $OIP to any 25 setup
#[http]
$IPF 140 allow tcp from any to $OIP 80 setup
#[ssl]
$IPF 160 allow tcp from any to $OIP 443 setup
# Allow Normal icmp
$IPF pass allow from any to any icmptype 3
$IPF pass allow from any to any icmptype 4
$IPF pass allow from any to any icmptype 11
$IPF 190 deny tcp from any to any in setup
$IPF 200 allow tcp from any to any setup
#Allow NTP queries out in the world
$IPF 210 allow udp from ${OIP} to any 123
# deny and log everything
$IPF 500 deny log all from any to any
$OIP 是我那張網卡的ip..
想請問是否有什麼問題..已經連不上了orz..謝謝
--
Tags:
BBS
All Comments
Related Posts
SATA on BSD
By Megan
at 2007-12-07T11:36
at 2007-12-07T11:36
lighttpd with php 安裝
By Ingrid
at 2007-12-07T11:29
at 2007-12-07T11:29
lighttpd with php 安裝
By Isabella
at 2007-12-07T11:09
at 2007-12-07T11:09
請問在 ports 裡 make config後...
By Noah
at 2007-12-06T23:42
at 2007-12-06T23:42
SATA on BSD
By Barb Cronin
at 2007-12-06T19:45
at 2007-12-06T19:45