[Midnightbsd-cvs] src: rc.firewall: Open port 22 on the desktop ruleset when sshd is
ctriv at midnightbsd.org
ctriv at midnightbsd.org
Sun Sep 2 14:04:31 EDT 2007
Log Message:
-----------
Open port 22 on the desktop ruleset when sshd is enabled in rc.conf.
Modified Files:
--------------
src/etc:
rc.firewall (r1.3 -> r1.4)
-------------- next part --------------
Index: rc.firewall
===================================================================
RCS file: /home/cvs/src/etc/rc.firewall,v
retrieving revision 1.3
retrieving revision 1.4
diff -Letc/rc.firewall -Letc/rc.firewall -u -r1.3 -r1.4
--- etc/rc.firewall
+++ etc/rc.firewall
@@ -153,11 +153,16 @@
${fwcmd} add allow tcp from any to any out
${fwcmd} add allow tcp from any to any established
${fwcmd} add allow tcp from any to any frag
+ case ${sshd_enable} in
+ [Yy][Ee][Ss])
+ ${fwcmd} add pass tcp from any to me 22 setup
+ ;;
+ esac
${fwcmd} add 65000 deny tcp from any to any
${fwcmd} add 65100 deny icmp from any to me in icmptypes 8
${fwcmd} add 65200 allow all from any to any
;;
-
+
[Cc][Ll][Ii][Ee][Nn][Tt])
############
# This is a prototype setup that will protect your system somewhat
More information about the Midnightbsd-cvs
mailing list