|
Lines 229-238
Link Here
|
| 229 |
|
229 |
|
| 230 |
# Allow ICMP (for ping and traceroute to work). You may wish to |
230 |
# Allow ICMP (for ping and traceroute to work). You may wish to |
| 231 |
# disallow this, but I feel it suits my needs to keep them in. |
231 |
# disallow this, but I feel it suits my needs to keep them in. |
| 232 |
$fwcmd add 65435 allow icmp from any to any |
232 |
$fwcmd add allow icmp from any to any |
| 233 |
|
233 |
|
| 234 |
# Deny all the rest. |
234 |
# Deny all the rest. |
| 235 |
$fwcmd add 65435 deny log ip from any to any</programlisting> |
235 |
$fwcmd add deny log ip from any to any</programlisting> |
| 236 |
|
236 |
|
| 237 |
<para>You now have a fully functional firewall that will allow on |
237 |
<para>You now have a fully functional firewall that will allow on |
| 238 |
connections to ports 80 and 22 and will log any other connection |
238 |
connections to ports 80 and 22 and will log any other connection |