I have read the ipfw man page and find it difficult to understand, what I want to do is set up the firewall to allow ssh & ftp connections from only mypc123.com and mypc456.com and block and log everything else.

Have you ever though of using PF-firewall?

As of now (net, free) both support openbsd's PF-Firewall which i believe to be more configurable.

will pf-firewall run on os x?

Not that i know of. I would say google it and see what comes up.

The basic ipfw addition command looks something like this:You can also use the shortcut phrase "me" to refer to any IP address on a local interface, which makes for more readable rules. The options refers to various extraneous options, the most popular of which is keep-state. This means that when the rule is evaluated for a connection, that evaluation is kept in memory as long as that connection persists. It's a bit of an optimization, in other words. Here's a ruleset that I think should do what you want:The basic ipfw delete command looks like:As a warning, there is one thing I'm uncertain about the above syntax. If you use a domain name instead of an IP address, you may need to have that domain name defined in /etc/hosts. Other than that, I'm pretty sure this will work as you requested.

Instead of using any other firewall, I would recommend using IPFW. Its nice for what it does and you would find it compiled in the kernel with FreeBSD 6.x and I think with 5.x as well.

You can configure ipfw with the above post or you could also use the QTFW program which can be used to configure firewall rules.

Here's the link to the project page.
http://sourceforge.net/projects/qtfw/

A [ pkg_add -r qtfw ] should get you the package and all its dependencies as well.

what about ipf ? '/etc/ipf.rules'

[please dont put rules that dont work in this file, i did it, and after the reboot i was locked out of my pc ]