Add a config file for ipfw, #110

author: Roy Marples <roy@marples.name> 2008-09-18 14:25:23 +0000
committer: Roy Marples <roy@marples.name> 2008-09-18 14:25:23 +0000
commit: ccc24d1086ec4a5110739e3b352bb1dc2967a9ff (patch)
tree: 9ed3768724ae608cf737c5c7c32d43adcf1c2518 /conf.d/ipfw
parent: c4c024fc9d907706e3c8e0f31130a516955ba8ec (diff)
download: openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.gz
openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.bz2
openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.xz
1 files changed, 14 insertions, 0 deletions
diff --git a/conf.d/ipfw b/conf.d/ipfw
new file mode 100644
index 0000000..b8c0005
--- /dev/null
+++ b/conf.d/ipfw
@@ -0,0 +1,14 @@
+# ipfw provides a stateful firewall.
+# This means we allow everything out, and if we have a connection we allow it
+# back in. This is very flexable and quite secure.
+
+# For ease of use, we allow auth and ssh ports through as well.
+# To override the list of allowed ports
+#ipfw_ports_in="auth ssh"
+
+# You may want to enable logging of denied connections
+#ipfw_log_deny="YES"
+
+# This ports not logged
+#ipfw_ports_nolog="135-139,445 1026,1027 1433,1434"
+
author	Roy Marples <roy@marples.name>	2008-09-18 14:25:23 +0000
committer	Roy Marples <roy@marples.name>	2008-09-18 14:25:23 +0000
commit	ccc24d1086ec4a5110739e3b352bb1dc2967a9ff (patch)
tree	9ed3768724ae608cf737c5c7c32d43adcf1c2518 /conf.d/ipfw
parent	c4c024fc9d907706e3c8e0f31130a516955ba8ec (diff)
download	openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.gz openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.bz2 openrc-ccc24d1086ec4a5110739e3b352bb1dc2967a9ff.tar.xz