OK this is probably operator error or stupidity. I rebuilding my server I naturally can't find my tried and true ipfw.rules. This is what I tried and it seems to block https and some map. I thought I allowed the right ports but I have thought a lot of things
I know IPFW is not real popular here but I thought it and I got along
Code:
IPF="ipfw -q add"
ipfw -q -f flush
#loopback
$IPF 10 allow all from any to any via lo0
$IPF 20 deny all from any to 127.0.0.0/8
$IPF 30 deny all from 127.0.0.0/8 to any
$IPF 40 deny tcp from any to any frag
# statefull
$IPF 50 check-state
$IPF 60 allow tcp from any to any established
$IPF 70 allow all from any to any out keep-state
$IPF 80 allow icmp from any to any
$IPF 100 deny ip from table\(22\) to any
# open port ftp (20,21), ssh (22), mail (25)
# http (80), dns (53) etc
$IPF 110 allow tcp from any to any 21 in
$IPF 120 allow tcp from any to any 21 out
$IPF 130 allow tcp from any to any 22 in
$IPF 140 allow tcp from any to any 22 out
$IPF 150 allow tcp from any to any 25 in
$IPF 160 allow tcp from any to any 25 out
$IPF 170 allow udp from any to any 53 in
$IPF 175 allow tcp from any to any 53 in
$IPF 180 allow udp from any to any 53 out
$IPF 185 allow tcp from any to any 53 out
$IPF 200 allow tcp from any to any 80 in
$IPF 210 allow tcp from any to any 80 out
$IPF 215 allow tcp from any to any 110 in
$IPF 216 allow tcp from any to any 110 out
$IPF 220 allow tcp from any to any 143 in
$IPF 225 allow tcp from any to any 143 out
$IPF 227 allow tcp from any to any 443 in
$IPF 228 allow tcp from any to any 443 out
$IPF 230 allow tcp from any to any 465 in
$IPF 235 allow tcp from any to any 465 out
$IPF 250 allow tcp from any to any 587 in
$IPF 255 allow tcp from any to any 587 out
$IPF 260 allow tcp from any to any 993 in
$IPF 265 allow tcp from any to any 993 out
$IPF 270 allow tcp from any to any 995 in
$IPF 275 allow tcp from any to any 995 out
# deny and log everything
$IPF 500 deny log all from any to any
I know IPFW is not real popular here but I thought it and I got along