Re: Simple firewall question: Blocking a handful of IPs
On 2006-04-27 17:53, RW <[EMAIL PROTECTED]> wrote: >On Thursday 27 April 2006 03:10, fbsd wrote: >>H. Wade Minter wrote: >>> I want all traffic allowed unfettered, except traffic from >>> particular IPs to be completely blocked coming in. >>> >>> Can someone show me which ipf rules to use to get that result? >> >> block in quick on rl0 from x.x.x.x to any > > Unless the syntax is the same, that looks more like pf than ipf. The syntax *is* the same, in this case. The only ipf syntax feature that ipf users are likely to miss from pf syntax is the use of rule `groups', but this is not used here. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Simple firewall question: Blocking a handful of IPs
On Thursday 27 April 2006 17:53, RW wrote: > On Thursday 27 April 2006 03:10, fbsd wrote: > > > -Original Message- > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED] Behalf Of H. Wade > > > Minter > >> > >> .. > >> > > > I want all traffic allowed unfettered, except traffic from > > > particular > > > IPs to be completely blocked coming in. > > > > > > Can someone show me which ipf rules to use to get that result? > > > > block in quick on rl0 from x.x.x.x to any > > Unless the syntax is the same, that looks more like pf than ipf. Sorry, I see the syntax is the same. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: Simple firewall question: Blocking a handful of IPs
On Thursday 27 April 2006 03:10, fbsd wrote: > > -Original Message- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED] Behalf Of H. Wade > > Minter >> .. > > I want all traffic allowed unfettered, except traffic from > > particular > > IPs to be completely blocked coming in. > > > > Can someone show me which ipf rules to use to get that result? > block in quick on rl0 from x.x.x.x to any Unless the syntax is the same, that looks more like pf than ipf. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: Simple firewall question: Blocking a handful of IPs
block in quick on rl0 from x.x.x.x to any -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of H. Wade Minter Sent: Wednesday, April 26, 2006 8:47 PM To: [EMAIL PROTECTED] Subject: Simple firewall question: Blocking a handful of IPs I'm not extremely comfortable with doing firewall testing remotely on production systems, but I need to set up some incoming IP blocks. I've got a FreeBSD RELENG_5_4 system with public interface rl0. I want all traffic allowed unfettered, except traffic from particular IPs to be completely blocked coming in. Can someone show me which ipf rules to use to get that result? Thanks, Wade ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"