Re: [FreeBSD] ipfw kurallar�m �al��m�yor yard

2005-05-03 Başlik �mer 
kurallar karlatrdm ipfw show komutu ile baktmda çalanlar ile yazl olanlar ayn. Özkan KIRIK [EMAIL PROTECTED] wrote:
Mrb Ömer bey,kurallari calistirdiginiz zaman nasil bir hata aliyorsunuz?calisan kurallar ile yazili olan kurallari karsilastirdiniz mi?ipfw showkomutunun sonucu ile sizin kurallariniz ayni mi?Saygilarimla,Özkan KIRIKEnderUNIX Yazilim Gelistirme TakimiYazilim GelistiricisiÖmer Koyun wrote: merhaba arkadaþlar  ipfw.rules dosyamdaki kurallar aþaðýdaki gibi olursa çalýþmýyor  #define oif rl0 #define oip 1.2.3.4 #define onet 1.2.3.4:255.255.255.248 #define iif1 rl1 #define iip1 10.0.0.254 #define inet1 10.0.0.0/24 add divert natd all from any to any via oif add allow tcp from any to any established add allow all from any to any frag add allow tcp from any to any 25 add allow tcp from any 25 to any add
 allow tcp from any to any 110 add allow tcp from any 110 to any add allow udp from any to any 53 via rl0 add allow udp from any 53 to any via rl0 add allow udp from any to any 53 via rl1 add allow udp from any 53 to any via rl1 add deny tcp from 10.0.0.28/32 to any 80 add deny tcp from 10.0.0.40/32 to any 80 add deny tcp from 10.0.0.52/32 to any 80 add deny tcp from 10.0.0.48/32 to any 80 add deny tcp from 10.0.0.48/32 to any 1863 add deny tcp from 10.0.0.48/32 to 207.46.104.20/24 add deny tcp from 10.0.0.48/32 to 207.46.110.20/24 add deny tcp from 10.0.0.48/32 to 64.4.13.0/24 add deny tcp from 10.0.0.31/32 to any 80 add deny tcp from 10.0.0.31/32 to any 1863 add deny tcp from 10.0.0.31/32 to 207.46.104.20/24 add deny tcp from 10.0.0.31/32 to 207.46.110.20/24 add deny tcp from 10.0.0.31/32 to 64.4.13.0/24 add deny tcp from
 10.0.0.33/32 to any 80 add deny tcp from 10.0.0.33/32 to any 1863 add deny tcp from 10.0.0.33/32 to 207.46.104.20/24 add deny tcp from 10.0.0.33/32 to 207.46.110.20/24 add deny tcp from 10.0.0.33/32 to 64.4.13.0/24 add deny tcp from 10.0.0.50/32 to any 80 add deny tcp from 10.0.0.50/32 to any 1863 add deny tcp from 10.0.0.50/32 to 207.46.104.20/24 add deny tcp from 10.0.0.50/32 to 207.46.110.20/24 add deny tcp from 10.0.0.50/32 to 64.4.13.0/24 add deny tcp from 10.0.0.16/32 to any 80 add deny tcp from 10.0.0.41/32 to any 80 add deny tcp from 10.0.0.41/32 to any 1863 add deny tcp from 10.0.0.41/32 to 207.46.104.20/24 add deny tcp from 10.0.0.41/32 to 207.46.110.20/24 add deny tcp from 10.0.0.41/32 to 64.4.13.0/24 add deny tcp from 10.0.0.36/32 to any 80 add deny tcp from 10.0.0.36/32 to any 1863 add deny tcp from 10.0.0. 36/32 to
 207.46.104.20/24 add deny tcp from 10.0.0.36/32 to 207.46.110.20/24 add deny tcp from 10.0.0.36/32 to 64.4.13.0/24 add deny tcp from 10.0.0.45/32 to any 80 add deny tcp from 10.0.0.45/32 to any 25 add deny tcp from 10.0.0.45/32 to any 110 add deny tcp from 10.0.0.29/32 to any 1863 add deny tcp from 10.0.0.29/32 to any 207.46.104.20/24 add deny tcp from 10.0.0.29/32 to any 207.46.110.20/24 add deny tcp from 10.0.0.29/32 to 64.4.13.0/24 add deny tcp from 10.0.0.13/32 to any 80 add deny tcp from 10.0.0.7/32 to any 80 add deny tcp from 10.0.0.11/32 to any 80 add allow all from any to any add allow udp from oip to any out via oif keep-state add allow udp from oip to any in via oif keep-state add allow icmp from any to any via rl0 add allow icmp from any to any via rl1FAKAT BU AÞAÐIDAKÝ GÝBÝ OLURSA ÇALIÞIYOR. BUNUN
 NEDENÝ NE LABÝLÝR  NERDE HATA YAPMIÞ OLABÝLÝRÝM.  #define oif rl0 #define oip 1.2.3.4 #define onet 1.2.3.4:255.255.255.248 #define iif1 rl1 #define iip1 10.0.0.254 #define inet1 10.0.0.0/24 add divert natd all from any to any via oif add allow tcp from any to any established add allow all from any to any frag add allow tcp from any to any 25 add allow tcp from any 25 to any add allow tcp from any to any 110 add allow tcp from any 110 to any add allow udp from any to any 53 via rl0 add allow udp from any 53 to any via rl0 add allow udp from any to any 53 via rl1 add allow udp from any 53 to any via rl1 add allow all from any to any add allow udp from oip to any out via oif keep-state add allow udp from oip to any in via oif keep-state add allow icmp from any to any via rl0 add allow icmp from
 any to any via rl1__ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com-Cikmak icin, e-mail: [EMAIL PROTECTED]Liste arsivi: http://lists.enderunix.orgTurkiye'nin ilk FreeBSD kitabi: http://www.acikakademi.com/freebsd.php__Do You Yahoo!?Tired of spam?  Yahoo! Mail has the best spam protection around http://mail.yahoo.com

[FreeBSD] ipfw kurallar�m �al��m�yor yard

2005-05-02 Başlik �mer 
merhaba arkadaþlar 

ipfw.rules dosyamdaki kurallar aþaðýdaki gibi olursa çalýþmýyor

#define oif rl0#define oip 1.2.3.4#define onet 1.2.3.4:255.255.255.248
#define iif1 rl1#define iip1 10.0.0.254#define inet1 10.0.0.0/24
add divert natd all from any to any via oifadd allow tcp from any to any establishedadd allow all from any to any fragadd allow tcp from any to any 25add allow tcp from any 25 to anyadd allow tcp from any to any 110add allow tcp from any 110 to anyadd allow udp from any to any 53 via rl0add allow udp from any 53 to any via rl0add allow udp from any to any 53 via rl1add allow udp from any 53 to any via rl1add deny tcp from 10.0.0.28/32 to any 80add deny tcp from 10.0.0.40/32 to any 80add deny tcp from 10.0.0.52/32 to any 80add deny tcp from 10.0.0.48/32 to any 80add deny tcp from 10.0.0.48/32 to any 1863add deny tcp from 10.0.0.48/32 to 207.46.104.20/24add deny tcp from 10.0.0.48/32 to 207.46.110.20/24add deny tcp from 10.0.0.48/32 to 64.4.13.0/24add deny tcp from 10.0.0.31/32 to any 80add deny tcp from 10.0.0.31/32 to any 1863add deny tcp from 10.0.0.31/32 to 207.46.104.20/24add deny tcp from
 10.0.0.31/32 to 207.46.110.20/24add deny tcp from 10.0.0.31/32 to 64.4.13.0/24add deny tcp from 10.0.0.33/32 to any 80add deny tcp from 10.0.0.33/32 to any 1863add deny tcp from 10.0.0.33/32 to 207.46.104.20/24add deny tcp from 10.0.0.33/32 to 207.46.110.20/24add deny tcp from 10.0.0.33/32 to 64.4.13.0/24add deny tcp from 10.0.0.50/32 to any 80add deny tcp from 10.0.0.50/32 to any 1863add deny tcp from 10.0.0.50/32 to 207.46.104.20/24add deny tcp from 10.0.0.50/32 to 207.46.110.20/24add deny tcp from 10.0.0.50/32 to 64.4.13.0/24add deny tcp from 10.0.0.16/32 to any 80add deny tcp from 10.0.0.41/32 to any 80add deny tcp from 10.0.0.41/32 to any 1863add deny tcp from 10.0.0.41/32 to 207.46.104.20/24add deny tcp from 10.0.0.41/32 to 207.46.110.20/24add deny tcp from 10.0.0.41/32 to 64.4.13.0/24add deny tcp from 10.0.0.36/32 to any 80add deny tcp from 10.0.0.36/32 to any 1863add deny tcp from 10.0.0.36/32 to
 207.46.104.20/24add deny tcp from 10.0.0.36/32 to 207.46.110.20/24add deny tcp from 10.0.0.36/32 to 64.4.13.0/24add deny tcp from 10.0.0.45/32 to any 80add deny tcp from 10.0.0.45/32 to any 25add deny tcp from 10.0.0.45/32 to any 110add deny tcp from 10.0.0.29/32 to any 1863add deny tcp from 10.0.0.29/32 to any 207.46.104.20/24add deny tcp from 10.0.0.29/32 to any 207.46.110.20/24add deny tcp from 10.0.0.29/32 to 64.4.13.0/24add deny tcp from 10.0.0.13/32 to any 80add deny tcp from 10.0.0.7/32 to any 80add deny tcp from 10.0.0.11/32 to any 80add allow all from any to anyadd allow udp from oip to any out via oif keep-stateadd allow udp from oip to any in via oif keep-stateadd allow icmp from any to any via rl0add allow icmp from any to any via rl1 



FAKAT BU AÞAÐIDAKÝ GÝBÝ OLURSA ÇALIÞIYOR. BUNUN NEDENÝ NE LABÝLÝR NERDE HATA YAPMIÞ OLABÝLÝRÝM.

#define oif rl0#define oip 1.2.3.4#define onet 1.2.3.4:255.255.255.248
#define iif1 rl1#define iip1 10.0.0.254#define inet1 10.0.0.0/24
add divert natd all from any to any via oifadd allow tcp from any to any establishedadd allow all from any to any fragadd allow tcp from any to any 25add allow tcp from any 25 to anyadd allow tcp from any to any 110add allow tcp from any 110 to anyadd allow udp from any to any 53 via rl0add allow udp from any 53 to any via rl0add allow udp from any to any 53 via rl1add allow udp from any 53 to any via rl1add allow all from any to anyadd allow udp from oip to any out via oif keep-stateadd allow udp from oip to any in via oif keep-stateadd allow icmp from any to any via rl0add allow icmp from any to any via rl1 


__Do You Yahoo!?Tired of spam?  Yahoo! Mail has the best spam protection around http://mail.yahoo.com