ru.unix.bsd
- RU.UNIX.BSD ------------------------------------------------------------------
From : Alex L Demidov 2:5051/17 09 Jun 2002 22:09:53
To : Wadim Shkirmantov
Subject : Re: IP filter
--------------------------------------------------------------------------------
> Hello, All!
>
> Пересобрал я ядро с поддержкой сабжа и опцией IPFILTER_DEFAULT_BLOCK и
> написал
> правила:
>
> === Cut ===
> pass in on lo0 proto icmp from any to any
>
> pass in on ppp0 proto icmp from any to any
> log in on ppp0 proto icmp from any to any
>
> pass in on ppp0 proto tcp from any to any port = 22
> log in on ppp0 proto tcp from any to any port = 22
>
> pass in on ppp0 proto tcp from any to any port = 25
> log in on ppp0 proto tcp from any to any port = 25
>
> pass in on lo0 proto tcp from any to any port = 21
> pass in on ppp0 proto tcp from any to any port = 21
> log in on ppp0 proto tcp from any to any port = 21
> === Cut ===
> Почему ping 127.0.0.1 выдаёт no route to host? Вроде бы я icmp lo0 разрешил?
Если не разобрался с last match - пиши pass in quick.
И добавь правила для исходящих пакетов.
--
Alex L. Demidov (ALD9-RIPE).
--- tin/1.5.11-20020130 ("Toxicity") (UNIX) (FreeBSD/4.5-STABLE (i386))
* Origin: Tahiti Island Consulting (2:5051/17@fidonet)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
| Тема: |
Автор: |
Дата: |
|
IP filter |
Wadim Shkirmantov |
09 Jun 2002 00:31:54 |
 IP filter |
Andrey Ostanovsky |
09 Jun 2002 11:52:13 |
 IP filter |
Wadim Shkirmantov |
10 Jun 2002 00:13:54 |
 IP filter |
Alexandr Oskolkov |
10 Jun 2002 12:14:40 |
|
Re: IP filter |
Alex L Demidov |
09 Jun 2002 22:09:53 |
|
|
