>block in on rl0 all >pass in on rl0 inet proto tcp from any to any port 22 >pass in on rl0 inet proto tcp from any to any port 80 >pass in on rl0 inet proto tcp from any to any port 443 >pass out on rl0 all > > my office doesn't have Internet access..., > What's wrong?, what can I read to learn this?
I don't know anything about BSD, but, most firewalls process the rules in order and stop at the first match, in which case you need: >pass in on rl0 inet proto tcp from any to any port 22 >pass in on rl0 inet proto tcp from any to any port 80 >pass in on rl0 inet proto tcp from any to any port 443 >block in on rl0 all >pass out on rl0 all This would allow tcp in on 22,80,443 blocking all other incoming and allow all outgoing. Chris Berry [EMAIL PROTECTED] Systems Administrator JM Associates "I have found the way, and the way is Perl." _________________________________________________________________ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx
