Live Chat & Podcast at 1:00PM Eastern on Sunday!
There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
Search
Linux and Unix
Go to first new post What is the best free Linux operating sy ...
Go to first new post Uninstalling Ubuntu 11.10 from a dual bo ...
Go to first new post Solved: Ubuntu try hd (0,0) error prefix ...
Go to first new post which wifi USB device to buy for backtra ...
Go to first new post ubuntu no wireless connection
Go to first new post Debain, VNC server connection issues
Tag Cloud
access acer asus bios bsod computer crash desktop dns driver drivers error ethernet excel freeze gaming graphics hard drive hardware hdmi internet laptop malware memory monitor motherboard network printer problem ram registry repair router slow software sound trojan ubuntu 11.10 uninstall usb video virus vista wifi windows windows 7 windows 7 32 bit windows 7 64 bit windows xp wireless
Search
Search for:
Tech Support Guy Forums > Operating Systems > Linux and Unix >
Firewall/IPFW problems...

Reply  
Thread Tools
Gibble's Avatar
Distinguished Member with 27,127 posts.
  
Join Date: Oct 2001
Location: Striking or Scoring
Experience: The Alpha and Omega
11-Jan-2005, 11:39 AM #1
Firewall/IPFW problems...
Aaargh...

I can ssh (and access http) to my server from the internet, but not from my internal network.

Here are my rules

Code:
# ipfw show
00050  732928 456908524 divert 8668 ip from any to any via rl0
00100     276     13800 allow ip from any to any via lo0
00200       0         0 deny ip from any to 127.0.0.0/8
00300       0         0 deny ip from 127.0.0.0/8 to any
65000 1433788 911946761 allow ip from any to any
65535       2       419 deny ip from any to any
Help!
Register for free to hide this ad!
Squashman's Avatar
Trusted Advisor with 18,706 posts.
  
Join Date: Apr 2003
Location: 1265 Lombardi Ave
Experience: Bocks of Rox
11-Jan-2005, 12:09 PM #2
I am not too sure how IPFW works. I have never used it.

Question : Does ipfw list do the same thing as ipfw show.

Do you have a IPFW script that generates these rules. Could we see that.

From what I see on the FreeBSD website, it looks like you have your rules setup backwards. You want to Deny everything first and then let stuff in.

I found this interesting on their site.
Quote:
All UNIX® flavored operating systems, FreeBSD included, are designed to use interface lo0 and IP address 127.0.0.1 for internal communication with in the operating system. The firewall rules must contain rules to allow free unmolested movement of these special internally used packets.
I would read this website a little more, maybe it will give you some clues.
http://www.freebsd.org/doc/en_US.ISO...alls-ipfw.html
Gibble's Avatar
Distinguished Member with 27,127 posts.
  
Join Date: Oct 2001
Location: Striking or Scoring
Experience: The Alpha and Omega
11-Jan-2005, 12:27 PM #3
yes ipfw list and ipfw show are the same, I'm using the default rc.firewall script, with the OPEN option...
Email This Email  Print This Print  Tweet This Send to Facebook Send to MySpace Send to StumbleUpon Digg This | More Services More
Reply

THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!

« Previous Thread | Linux and Unix | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
WELCOME TO TECH SUPPORT GUY! Are you looking for the solution to your computer problem? Join our site today to ask your question -- for free! Our site is run completely by volunteers who want to help you solve your computer problems. See our Welcome Guide to get started.
Thread Tools



Facebook Facebook Twitter Twitter TechGuy.tv TechGuy.tv Mobile TSG Mobile
Contact Us - HelpOnThe.Net - Archive - Terms of Service - Top
You Are Using:
Server ID
Advertisements do not imply our endorsement of that product or service.
All times are GMT -4. The time now is 09:08 PM.
Copyright © 1996 - 2011 TechGuy, Inc. All rights reserved.

 Powered by Cermak Technologies, Inc.