[問題] ipfw 設定問題

看板FreeBSD作者thorita (燃燒殆盡)時間18年前 (2008/02/25 00:17)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串1/5 (看更多)

不好意思我又來發問了~ 之前有問過關於防火牆的問題決定使用 ipfw 本以為都很順利結果是因為都在學術網路之下(區網??) 所以沒有發現問題的所在回到家之後才發現所有服務完全都被 deny 跟在學校的時候完全不依樣請問我是哪邊設定錯誤了嗎？以下是我的 # ipfw show 00200 697 44608 deny ip from any to 127.0.0.0/8 00299 0 0 deny ip from 59.160.212.37 to me 00300 0 0 deny ip from 61.129.42.20 to me 00301 0 0 deny ip from 66.36.243.216 to me 00302 0 0 deny ip from 75.126.151.82 to me 00303 0 0 deny ip from 80.87.72.3 to me 00304 0 0 deny ip from 80.190.249.71 to me 00305 0 0 deny ip from 82.247.26.223 to me 00306 0 0 deny ip from 83.19.3.148 to me 00307 0 0 deny ip from 83.19.3.148 to me 00307 0 0 deny ip from 91.186.1.247 to me 00308 0 0 deny ip from 121.156.66.171 to me 00309 0 0 deny ip from 140.129.79.93 to me 00310 0 0 deny ip from 163.13.111.70 to me 00311 0 0 deny ip from 194.212.173.190 to me 00312 0 0 deny ip from 201.63.19.74 to me 00313 0 0 deny ip from 202.53.76.66 to me 00314 0 0 deny ip from 202.71.128.100 to me 00315 0 0 deny ip from 203.172.203.141 to me 00316 0 0 deny ip from 203.206.187.222 to me 00317 0 0 deny ip from 209.194.99.178 to me 00318 0 0 deny ip from 210.93.99.158 to me 00319 0 0 deny ip from 210.205.6.161 to me 00320 0 0 deny ip from 210.112.232.13 to me 00321 0 0 deny ip from 210.243.128.135 to me 00322 0 0 deny ip from 211.182.114.2 to me 00323 0 0 deny ip from 211.210.38.22 to me 00324 0 0 deny ip from 212.144.253.94 to me 00325 0 0 deny ip from 212.150.245.6 to me 00326 0 0 deny ip from 216.8.167.75 to me 00327 0 0 deny ip from 218.50.54.19 to me 00328 0 0 deny ip from 218.89.135.5 to me 00329 0 0 deny ip from 218.106.252.119 to me 00330 0 0 deny ip from 148.228.21.92 to me 00332 0 0 deny ip from 222.91.124.94 to me 00600 0 0 deny ip from 222.108.7.130 to me 01000 0 0 allow ip from any to any via x10 10000 26840 6028102 allow tcp from any to me dst-port 22 in keep-state 10001 3451 213445 allow tcp from any to me dst-port 21 in setup limit src-addr 3 10002 7 420 allow tcp from any to me dst-port 80 in setup limit src-addr 3 65000 15090481 13072774885 allow ip from any to any 65535 1194 308072 deny ip from any to any --------------------------------------------------------------------------- 是哪邊設定錯誤了？另外因為我沒有重新變異kernel 是直接用 ipfw add 去加入規則的可是我看了一些網路資源應該有個 ipfw.table的檔案可是在哪呢？或是要怎樣才可以把以上的規則檔案給備份下來？謝謝 ^^ -- ※ 發信站: 批踢踢實業坊(ptt.cc) ◆ From: 163.13.127.194