-
You can use version 0.3.2b.
This version has very useful function - tables.
You can add address in table, like this:
ipfw table 1 add 1.1.1.0/24
ipfw table 1 add 2.2.0.0/16
ipfw table 1 add 3.3.3.3
e.t.c.
And one rule:
add deny all from any to table(1)
will block any address in this table.
Yes, you need to create tables with addresses.
2009-11-08 20:21:36 UTC by lexore
-
Hello.
Domain names (like www.uol.com.br) can have many ip addresses.
Specifically, this domain has 2 ip addresses:
$ nslookup www.uol.com.br
...
Non-authoritative answer:
Name: www.uol.com.br
Address: 200.98.249.120
Name: www.uol.com.br
Address: 200.221.2.45
So, you need to make a rule for each ip address.
2009-11-08 20:11:08 UTC by lexore
-
Okey. I managed to grab Win2000 DDK + VC6.
And I was able to build sys driver.
I cannot build userland tool due to lack of iphlpapi.
2009-10-31 10:59:37 UTC by borg88
-
Hello.
Can someone point me what compiler should I use to compile wipfw-0.2.8 from sources?
Seems there is a bug in statefull firewall. When you flush fw rules, dynamic rules are flushed too (marked as expired). After that new identical dynamic rule is unable to install itself. Looks like race condition because once I see it ok and once I see it as expired.
Also, any chances that someone can...
2009-10-21 21:13:23 UTC by borg88
-
System error 1275 been occured while installing!
Can someone find me a solution? Thanks.
2009-10-10 22:44:19 UTC by alexld
-
i need forward any request to web server on port 8888. i try the role below, but i did not succed:
- ipfw add 00101 deny tcp from any to me 80
- ipfw add 00101 deny tcp from 192.168.0.0/24 to any 80
- ipfw add 00102 allow tcp from 192.168.0.0/24
to me 8888
even after applying the rule, web server can't be accessed.
Can anyone help me solve this problem?.
2009-10-09 06:35:12 UTC by manies
-
Thanks... You can help me... now functionally.
2009-09-13 17:49:53 UTC by ederpardeiro
-
First of all, there is a typo in your rule. It must be
ipfw add deny ip from 192.168.0.2 to www.uol.com.br
But I assume you know it. What's more important is that a rule added this way becomes the *last* rule in the list and therefore is processed latest. There is a rule in default WIPFW configuration:
add allow ip from any to any out keep-state
This rule allows any...
2009-09-13 14:51:07 UTC by snakeveil
-
Good Night,
I am Braziliam and my english is bad. Any form, I will try explain my question.
I need block a website on a given computer.
I try the role below, but I did not succeed:
IPFW add deny IP 192.168.0.2 to www.uol.com.br **(for example)**
The command above been typed in MS-DOS console of Windows 2003Server Standard. This IP 192.168.0.2 is this computer and even after applying...
2009-09-12 22:40:31 UTC by ederpardeiro
-
Good Night,
I am Braziliam and my english is bad. Any form, I will try explain my question.
I need block a website on a given computer.
I try the role below, but I did not succeed:
IPFW add deny IP 192.168.0.2 to www.uol.com.br **(for example)**
The command above been typed in MS-DOS console of Windows 2003Server Standard. This IP 192.168.0.2 is this computer and even after applying...
2009-09-12 22:38:13 UTC by ederpardeiro
