summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRoy Marples <uberlord@gentoo.org>2007-03-13 14:36:29 +0000
committerRoy Marples <uberlord@gentoo.org>2007-03-13 14:36:29 +0000
commit1a815804b9af62e41875e403e4986ae72dcb5c91 (patch)
tree111a6cf5b88dd785e359797ad515368c071a5d46 /sys-freebsd/freebsd-sbin/files/ipfw.confd
parentx86 stable (diff)
downloadgentoo-2-1a815804b9af62e41875e403e4986ae72dcb5c91.tar.gz
gentoo-2-1a815804b9af62e41875e403e4986ae72dcb5c91.tar.bz2
gentoo-2-1a815804b9af62e41875e403e4986ae72dcb5c91.zip
Scrap the supplied ipfw script and replace with my own ipfw stateful
firewall script. (Portage version: 2.1.2.2)
Diffstat (limited to 'sys-freebsd/freebsd-sbin/files/ipfw.confd')
-rw-r--r--sys-freebsd/freebsd-sbin/files/ipfw.confd7
1 files changed, 7 insertions, 0 deletions
diff --git a/sys-freebsd/freebsd-sbin/files/ipfw.confd b/sys-freebsd/freebsd-sbin/files/ipfw.confd
new file mode 100644
index 000000000000..78864eef549e
--- /dev/null
+++ b/sys-freebsd/freebsd-sbin/files/ipfw.confd
@@ -0,0 +1,7 @@
+# ipfw provides a stateful firewall.
+# This means we allow everything out, and if we have a connection we allow it
+# back in. This is very flexable and quite secure.
+
+# For ease of use, we allow auth and ssh ports through as well.
+# To override the list of allowed ports
+#PORTS_IN="auth ssh"