ipfw firewall

  1. M

    IPFW Setting a common IP for both the Public IP and Jail IP

    Hello All, We are having trouble with finding ways to redirect the public IP address to the jail IP address. We have looked into the rc.conf and jail.conf files but are now sure how we should edit any of these files to achieve this. We have previously been unsuccessful in editing pf values...
  2. F

    How to interrupt network while client downloading content?

    Hi guys! I run a FreeBSD VPS where it's located a webserver with WHMCS inside. (Apache + Nginx) I would like to do other kind of ad by running a prank on social media where people will get message like "X has been hacked. Click here to download database" or something similar. What I need? A...
  3. B

    IPFW application hosted in amazon the IP changes from time to time

    Hello, I need to release an application that accesses the amazon. With each ping in the URL of the application hosted in amazon the IP changes from time to time. The local application does not support proxy. I use freebsd / ipfw. Example ping return: app.example.net -> a.a.a.b app.example.net...
  4. L

    setfib not working with tun interfaces?

    Hello, I've a 12.0 STABLE kernel compiled with: options IPFIREWALL options IPFIREWALL_DEFAULT_TO_ACCEPT options IPFIREWALL_VERBOSE options IPDIVERT options DUMMYNET options HZ=1000 and: root@freebsd:~ # cat /boot/loader.conf net.fibs=2 My network configuration: root@freebsd:~ # ifconfig hn0...
  5. K

    IPFW ipfw auto deny tcp

    Hello all friends, I have setup ipfw on FreeBSD 10.0-RELEASE with rule : 00001 allow ip from any to any via lo0 00002 check-state 00005 allow ip from any to any via lagg0 00006 deny ip from table(1) to any in 00009 netgraph 100 tcp from any to any tcpflags syn via lagg1 00010 allow tcp from...
  6. T

    IPFW authpf alternative?

    I have a use case for authpf. However, I'd prefer to stick with IPFW as it seems to be more maintained and more recent than the included PF version. However, I've been unable to locate an alternate option that'll work with IPFW. Maybe I'm missing something, or maybe there's another way...
  7. W

    IPFW IPFW - TABLE Deprecated

    I am updating some firewall rules to work with fail2ban, and when I set to create the table on boot process I got this message: DEPRECATED: inserting data into non-existent table 1. (auto-created) My /etc/ipfw.rules of this part: ... ipfw -q add 01500 check-state # fail2ban IPs ipfw table...
  8. C

    IPFW Issue with opening ports for a reverse web proxy...

    Hello, First off I'd like to say a big hello, I'm new to the forms, and FreeBSD in general, and need to say a big thanks for the O/S as well as much of the help (first time posting, silently been reading). I am having an issue with setting up IPFW on a server that is being used as a reverse...
  9. G

    IPFW table blocks IP not in table

    Digital Ocean droplet: # uname -a FreeBSD theranch 10.3-RELEASE-p11 FreeBSD 10.3-RELEASE-p11 #0: Mon Oct 24 18:49:24 UTC 2016 root@amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC amd64 I have two ipfw tables. Both are created with scripts in the same manner. Here are a few lines...
  10. C

    Solved IPFW Tables

    Good afternoon, I have got problem with tables. I want to add IP ranges in CIDR format to table(1), but when I reload rules an error ipfw: Unable to parse value 78.30.64.0/18 persist. What can cause it? Below are the config files. /usr/local/etc/ipfw.conf: cmd="ipfw -q add" ipfw -q -f flush...
  11. A

    Is this (short) ipfw ruleset as tight as I think it is ?

    Here is a very short ipfw ruleset I have on a firewall device: 5 allow tcp from any to any established 10 allow icmp from any to any icmptypes 0,3,8,11 20 allow udp from any to any dst-port 33433-33499 in via xl1 30 allow tcp from any to any dst-port 40 in via xl1 65535 deny ip from any to any...
Top