IPFW rules for blocking ftp ?????
Running freebsd 5.2.1
ok if you read any of my other posts I have a apache server running and I have it set up so that a user "webmaster" can ftp new files into the intranet website,
but now I got bored so I want to set up my IP firewall to block all ip addresses on my network except like 1 or 2 . this is what i have in my config file for my firewall and i dont know what to change since I have never done this before and I am just going on the trial and error approach adding stuff that makes sense to me but prolly wrong
firewall file=
add allow all from 10.1.2.36 to any (person I want to have access)
add deny all from 10.1.0.0/21 to localhost/21 (block everything else ftp to my machine)
add 6500 allow all from any to any (let normal internet and other service traffic through)
any help will be greatly appreaciated
|