RE: Solution Request: I need to initiate outbound PPTP requests thru FreeBSD firewall

2006-03-12 Thread Chris Willis
-Original Message- From: Chris Willis Sent: Sunday, March 12, 2006 10:23 AM To: 'Melameth, Daniel D.' Subject: RE: Solution Request: I need to initiate outbound PPTP requests thru FreeBSD firewall This is what fwbuilder is creating. set limit { frags 5000, states 1 } s

RE: Solution Request: I need to initiate outbound PPTP requests thru FreeBSD firewall

2006-03-11 Thread Chris Willis
Melameth, Daniel D. Sent: Saturday, March 11, 2006 12:27 AM To: pf@benzedrine.cx Subject: RE: Solution Request: I need to initiate outbound PPTP requests thru FreeBSD firewall Chris Willis wrote: > I have setup a FreeBSD box running PF for a client. It is the > 'firewall' for th

Solution Request: I need to initiate outbound PPTP requests thru FreeBSD firewall

2006-03-11 Thread Chris Willis
06.135.37.226 port 500 But it didn't help at all. I put that rule both in front of, and behind, the regular NAT rule for outbound network traffic. Chris Willis Director of Technology & Services Castellan Inc. - Microsoft GOLD Certified Partner 818-789-0088 x203 www.castellan.net [EMAIL PROTECTED]

RFC - my firewall ruleset

2003-03-05 Thread Chris Willis
I would like to know what I can do to improve my firewall ruleset. This exact set protects my own internal LAN (8 computers), and includes P2P rules. I have similar rulesets protecting other networks I have worked on, none with more than 300 clients though. # pF.conf working for Wall # Varia

Re: Newbie Question (one of many to come)

2002-08-13 Thread Chris Willis
te: Mon, 12 Aug 2002 13:38:17 -0400 Subject: Re: Newbie Question (one of many to come) > On Mon, Aug 12, 2002 at 10:16:34AM -0700, Chris Willis wrote: > > I am puzzled still. No one can explain why it is bloated junk. It > would > > assist people who need to handle complex app

Re: Newbie Question (one of many to come)

2002-08-12 Thread Chris Willis
ox as my firewall. Thanx everyone! Chris -Original Message- From: Henning Brauer <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Date: Mon, 12 Aug 2002 10:25:24 +0200 Subject: Re: Newbie Question (one of many to come) > On Sat, Aug 10, 2002 at 06:21:26PM -0700, Chris Willis wrote:

RE: Newbie Question (one of many to come)

2002-08-11 Thread Chris Willis
Why would an attacker fine-tune a firewall? Do you mean that this would be a fine way to fine-tune an attack on a firewall? Sure, I guess it would - all you would have to do is port scan a machine over and over again, until you see those ports open up, then attack the machine thru those ports

Re: Newbie Question (one of many to come)

2002-08-11 Thread Chris Willis
, 10 Aug 2002 23:00:14 +0200 Subject: Re: Newbie Question (one of many to come) > On Sat, Aug 10, 2002 at 09:37:15AM -0700, Chris Willis wrote: > > > I would like to create a filter that allows 4900&4901 inbound to the > > machine that already has tcp 5000 open. If tcp 5000

Newbie Question (one of many to come)

2002-08-10 Thread Chris Willis
How can I setup a packet filter that works with a trigger? Example: I have an app that uses TCP 5000 for its connection state info, and UDP 4900 & 4901 for the actual work. I would like to create a filter that allows 4900&4901 inbound to the machine that already has tcp 5000 open. If tcp 500