From ccc24d1086ec4a5110739e3b352bb1dc2967a9ff Mon Sep 17 00:00:00 2001 From: Roy Marples Date: Thu, 18 Sep 2008 14:25:23 +0000 Subject: [PATCH] Add a config file for ipfw, #110 --- conf.d/Makefile.FreeBSD | 2 +- conf.d/ipfw | 14 ++++++++++++++ 2 files changed, 15 insertions(+), 1 deletion(-) create mode 100644 conf.d/ipfw diff --git a/conf.d/Makefile.FreeBSD b/conf.d/Makefile.FreeBSD index ea0c701e..c43a1d4f 100644 --- a/conf.d/Makefile.FreeBSD +++ b/conf.d/Makefile.FreeBSD @@ -1 +1 @@ -CONF+= moused powerd rarpd savecore syscons +CONF+= ipfw moused powerd rarpd savecore syscons diff --git a/conf.d/ipfw b/conf.d/ipfw new file mode 100644 index 00000000..b8c0005b --- /dev/null +++ b/conf.d/ipfw @@ -0,0 +1,14 @@ +# ipfw provides a stateful firewall. +# This means we allow everything out, and if we have a connection we allow it +# back in. This is very flexable and quite secure. + +# For ease of use, we allow auth and ssh ports through as well. +# To override the list of allowed ports +#ipfw_ports_in="auth ssh" + +# You may want to enable logging of denied connections +#ipfw_log_deny="YES" + +# This ports not logged +#ipfw_ports_nolog="135-139,445 1026,1027 1433,1434" +