IPFW ��... (��)

Fri, 19 Oct 2007 12:52:59 GMT

>�� !!! 8) � �� pipe

http://www.opennet.ru/base/net/ipfw_pipe.txt.html

IPFW ��... (zerofx)

Fri, 19 Oct 2007 12:21:56 GMT

>�� , �� .
>��!

�� !!! 8) � �� pipe ��, �� -
#ipfw add pipe 1 tcp from any to 192.168.1.2 out - ��є�, � �� !
#ipfw pipe 1 bw 10KB
#ipfw: bad command `bw'

IPFW ��... (Redduck)

Fri, 19 Oct 2007 11:55:49 GMT

�� .
�� NAT.

mailclient="192.168.1.2"
ipinet="192.168.109.100"
ifloc="�� "
ifinet="�� "
netlocal="192.168.1.0/24"

fwcmd="/sbin/ipfw -q"

${fwcmd} -f flush

${fwcmd} add pass all from any to any via lo0
${fwcmd} add deny all from any to 127.0.0.0/8
${fwcmd} add deny ip from 127.0.0.0/8 to any

(�� !)
${fwcmd} add deny log all from any to any tcpflags !fin, !syn, !rst, !psh, !ack, !urg
${fwcmd} add deny log all from any to any tcpflags fin, syn, rst, psh, ack, urg
${fwcmd} add deny log all from any to any not established tcpflags fin
${fwcmd} add deny icmp from any to any frag
${fwcmd} add deny icmp from any to any in icmptype 5,9,13,14,15,16,17
${fwcmd} add pass icmp from any to any

${fwcmd} add divert natd tcp from ${netlocal} to not ${netlocal} smtp,pop3,imap out via ${ifinet}
${fwcmd} add divert natd tcp from any smtp,pop3,imap to ${ipout} in via ${ifinet}

${

OpenForum RSS: IPFW �������...

IPFW �������... (������)

IPFW �������... (zerofx)

IPFW �������... (Redduck)

OpenForum RSS: IPFW ��...

IPFW ��... (��)

IPFW ��... (zerofx)

IPFW ��... (Redduck)