SunQuest
           BSD Help
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me
Go Back   Dev Shed ForumsOperating SystemsBSD Help
Reload this Page

IPFW and ACL-s

Discuss IPFW and ACL-s in the BSD Help forum on Dev Shed.
IPFW and ACL-s BSD Help forum discussing all BSD based operating systems including FreeBSD, OpenBSD, NetBSD, and more. BSD refers to the distribution of UNIX originally developed by the University of California at Berkeley.

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
Generate data entry and reporting .NET Web apps in minutes, straight from your database. Read our FREE whitepaper “Build Web 2.0 Applications Without Hand-Coding” Download now!
  #1  
Old February 17th, 2004, 03:09 AM
kotolenko kotolenko is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2004
Location: Maribor; Slovenia
Posts: 21 kotolenko User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: < 1 sec
Reputation Power: 0
IPFW and ACL-s
Hi,

i am running FreeBSD 4.9 and would like to setup a IPFW firewall. I would like to build my own ruleset, but i havent find anywhare if it is possible to build an ACL in that ruleset file.To have a list of IP-s for the later use in specific rules and in case anything changes, i dont have to change rules, i only add or remove some IP. For example:
.
.
admin="192.0.0.100 192.0.0.105"
users="192.0.0.150 192.0.0.151 192.0.0.152"
.
.
add allow all from $admin to any
add deny log all from $users to 209.247.228.201
.
.

Is it posible to do this in such way?
Reply With Quote
  #2  
Old February 18th, 2004, 05:42 PM
munkfish's Avatar
munkfish munkfish is offline
funky munky
Dev Shed Beginner (1000 - 1499 posts)
  
Join Date: Jul 2001
Location: UK
Posts: 1,446 munkfish User rank is Corporal (100 - 500 Reputation Level)munkfish User rank is Corporal (100 - 500 Reputation Level)munkfish User rank is Corporal (100 - 500 Reputation Level)munkfish User rank is Corporal (100 - 500 Reputation Level) 
Time spent in forums: 2 Days 18 h 33 m
Reputation Power: 10
Create a shell script along the lines of:

Code:
#!/bin/sh

# path to ipfw:
ipfw=/sbin/ipfw

admin="192.0.0.100 192.0.0.105"
users="192.0.0.150 192.0.0.151 192.0.0.152"

# then add the rules like:
for adminip in $admin
do
  $ipfw add allow all from $adminip to any
done

# similarly for users
...


You can then load the firewall rules by executing the script.
Reply With Quote
  #3  
Old February 19th, 2004, 10:15 AM
kotolenko kotolenko is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2004
Location: Maribor; Slovenia
Posts: 21 kotolenko User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: < 1 sec
Reputation Power: 0
thanx that works great
Reply With Quote
Reply

Viewing: Dev Shed ForumsOperating SystemsBSD Help > IPFW and ACL-s

« Previous Thread | Next Thread »

Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump


Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 





© 2003-2008 by Developer Shed. All rights reserved. DS Cluster 3 hosted by Hostway