Add a config file for ipfw, #110

author: Roy Marples <roy@marples.name> 2008-09-18 14:25:23 +0000
committer: Roy Marples <roy@marples.name> 2008-09-18 14:25:23 +0000
commit: ccc24d1086ec4a5110739e3b352bb1dc2967a9ff (patch)
tree: 9ed3768724ae608cf737c5c7c32d43adcf1c2518 /conf.d
parent: c4c024fc9d907706e3c8e0f31130a516955ba8ec (diff)
2 files changed, 15 insertions, 1 deletions
diff --git a/conf.d/Makefile.FreeBSD b/conf.d/Makefile.FreeBSD
index ea0c701e..c43a1d4f 100644
--- a/conf.d/Makefile.FreeBSD
+++ b/conf.d/Makefile.FreeBSD
@@ -1 +1 @@
-CONF+=	moused powerd rarpd savecore syscons
+CONF+=	ipfw moused powerd rarpd savecore syscons
diff --git a/conf.d/ipfw b/conf.d/ipfw
new file mode 100644
index 00000000..b8c0005b
--- /dev/null
+++ b/conf.d/ipfw
@@ -0,0 +1,14 @@
+# ipfw provides a stateful firewall.
+# This means we allow everything out, and if we have a connection we allow it
+# back in. This is very flexable and quite secure.
+
+# For ease of use, we allow auth and ssh ports through as well.
+# To override the list of allowed ports
+#ipfw_ports_in="auth ssh"
+
+# You may want to enable logging of denied connections
+#ipfw_log_deny="YES"
+
+# This ports not logged
+#ipfw_ports_nolog="135-139,445 1026,1027 1433,1434"
+
author	Roy Marples <roy@marples.name>	2008-09-18 14:25:23 +0000
committer	Roy Marples <roy@marples.name>	2008-09-18 14:25:23 +0000
commit	ccc24d1086ec4a5110739e3b352bb1dc2967a9ff (patch)
tree	9ed3768724ae608cf737c5c7c32d43adcf1c2518 /conf.d
parent	c4c024fc9d907706e3c8e0f31130a516955ba8ec (diff)