From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Jun 16 14:53:46 1997
Received: by jaz.jp.freebsd.org (8.8.5+2.7Wbeta5/8.7.3) id OAA01301
	Mon, 16 Jun 1997 14:53:46 +0900 (JST)
Received: by jaz.jp.freebsd.org (8.8.5+2.7Wbeta5/8.7.3) with ESMTP id OAA01295
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 16 Jun 1997 14:53:43 +0900 (JST)
Received: from ganymede.sunny.co.jp (ganymede.sunny.co.jp [202.214.81.36]) by europa.sunny.co.jp (8.8.5/3.5Wpl7-hub) with ESMTP id OAA26718 for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 16 Jun 1997 14:53:41 +0900 (JST)
Received: from localhost.sunny.co.jp (localhost.sunny.co.jp [127.0.0.1]) by ganymede.sunny.co.jp (8.8.5/3.5Wpl7-leaf) with SMTP id OAA15219 for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 16 Jun 1997 14:52:50 +0900 (JST)
Message-Id: <199706160552.OAA15219@ganymede.sunny.co.jp>
To: FreeBSD-users-jp@jp.freebsd.org
From: TANIYAMA Hideki <yoko@sunny.co.jp>
In-Reply-To: Your message of "Wed, 11 Jun 1997 14:49:00 +0900"
References: <19970611144900-2730C.hikura@hiro.mobile.tcc.co.jp>
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Date: Mon, 16 Jun 1997 14:52:50 +0900
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: bulk
X-Distribute: distribute [version 2.1 (Alpha) patchlevel=19]
X-Sequence: FreeBSD-users-jp 14354
Subject: [FreeBSD-users-jp 14354] Re: ipfw
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org

$BC+;3$H$$$$$^$9!#(B

$B$7$P$i$/A0$K(B2.2.1/2.2.2R$B$N(Bipfw$B$H@o$C$F$?(B($B$H$$$&$[$I$N$3$H$b$J$$$G$9$,(B)
$B$N$G$3$N$X$s$NOC$O$@$$$?$$H=$C$F$$$k$N$G$9$,!"@h=5Iw<Y$G;`$s$G$$$?$N$G(B
$B%?%$%`%j!<$J%j%W%i%$$,$G$-$^$;$s$G$7$?!#(B

>>>> On Wed, 11 Jun 1997 14:49:00 +0900,
>>>> 	Hironori Ikura/$B0KAR9-FA(B<hikura@tcc.co.jp> writes:

hikura> 2.2.1$B$G$O!"(B/etc/rc.firewall $B$K!"(B

>> ############ # Only in rare cases do you want to change this rule
>> /sbin/ipfw add 1000 pass all from 127.0.0.1 to 127.0.0.1

hikura> $B$H$"$k$N$G!"%$%s%9%H!<%k$7$?$^$s$^$G$b!"(Blocalhost $B$@$1$ODL$k$h(B
hikura> $B$&$K$J$C$F$^$9$M!#(B

$B$G$9$M!#(B

2.2.2R$B$N>l9g!"$3$N$X$s$,>/$7JQ$o$C$F$$$F!"(Brc.firewall$B$N:G8e$K(B

>> elif [ "${firewall}" != "NONE" -a -r "${firewall}" ]; then
>>        /sbin/ipfw ${firewall}
>> fi  

$B$F$N$,$"$k$N$G!"(B/etc/ipfw.conf$B$J$I$H$$$&%F%-%9%H%U%!%$%k$r:n$C$F!"<+A0(B
$B$N%U%#%k%?%j%s%0>r7o$r%>%m%>%m=q$-JB$Y!"%U%!%$%kL>$r(Brc.conf$B$G;XDj$9$l(B
$B$PNI$$$h$&$K$J$C$F$$$^$9!#(B

$B$G!"%>%m%>%m=q$/$N$O$$$$$s$G$9$,!"!V(Bport$BHV9f$O?t;z$G=q$1$#!W$H$$$&$*C#(B
$B$7(B(ipfw(8)$B;2>H(B)$B$,=P$F$^$7$F!"=q$-O"$M$F$$$k$&$A$K2?$,2?$@$+$o$+$i$J$/(B
$B$J$C$F$7$^$$$,$A$G$9!#(B

$B$=$l$G$O$;$a$F%3%a%s%H$K>\:Y>pJs$r!D$H;W$C$F$O$_$?$b$N$N!"(Bipfw$B$KM?$($k(B
$B%U%!%$%k$K$O%3%a%s%H$,=q$1$J$$$s$G$9$M!#(B;-)

$B$G!"(B/usr/src/sbin/ipfw.c$B$N(B957$B9T$aIU6a$K0J2<$N$h$&$J%3!<%I$,$"$k$N$G$9(B
$B$,!"(B

	if (av[1] && !access(av[1], R_OK)) {
		lineno = 0;
		f = fopen(av[1], "r");
		while (fgets(buf, BUFSIZ, f)) {
			if (buf[strlen(buf)-1]=='\n')
				buf[strlen(buf)-1] = 0;

			lineno++;
			if (*buf == '#') continue; $B"+(B $B!z$3$N9TDI2C(B
			sprintf(linename, "Line %d", lineno);
			args[0] = linename;

$B$F$J:Y9)$r$9$k$H!">/$J$/$H$b9TF,!V(B#$B!W$,%3%a%s%H9T$H$7$F07$($k$h$&$K$J$C(B
$B$F$A$g$C$H$@$14r$7$/$J$l$^$9!#(B($B$9$s$^$;$s!"BUK}$3$$$F$A$c$s$H(Bdiff$B<h$j(B
$B$^$;$s$G$7$?(B)

$B%^%K%e%"%k$K$b=q$$$F$"$j$^$9$,!"%j%b!<%H$G(Bipfw$B$N@_Dj%U%!%$%k$r$"$l$3$l(B
$B$$$8$k;~$OCm0U$7$^$7$g$&!#%X%?$9$k$H;d$N$h$&$K(Bfirewall$B%^%7%s$N=j$^$GAv$C(B
$B$F$$$/%O%a$K4Y$j$^$9!#(B;-O

$B%U%!%$%k$N@hF,$G(Bflush$B$7$?8e!"$9$0$K(B($BM%@h=g0L$r7h$a$k(Bnumber$B%Q%i%a!<%?$O(B
$B$I$&$"$l(B)$B@_Dj$K;H$C$F$$$k%j%b!<%H%^%7%s$^$G$N7PO)(B($B$H$$$&$H8lJ@$,$"$k$+(B?)
$B$r(Ballow$B$7$F$d$l$P(Bstream buffer$B$K(Bipfw$B$,=P$7$F$$$k%a%C%;!<%8$,$?$^$C$F$$(B
$B$k4V$KDL$k$h$&$K$J$k$N$G!"(Brlogin or telnet$B%;%C%7%g%s$,8G$^$C$F92$F$:$K(B
$B:Q$_$^$9!#(B(ipfw$B$r(Bquiet option$B$GF0$+$9$H$$$&<j$b$"$j$^$9$,(B)

$B!A!A!A!A!A!A!A!A!A!A!A!A!A!A!A!A!A!A!A(B  $BC+;3(B $B=(<y(B yoko@sunny.co.jp
  $B$h$3$J$_(B $B$h$3$J$_(B $B$h$3$J$_(B $B$h$3$J$_(B   $B3t<02q<R(B $B%5%K!<%=%U%H(B
