Professional Web Applications Themes

Brickhouse firewall and FTP - Mac Networking

Hi there, My Brickhouse firewall setup first blocks all TCP and UDP ports in and out, then opens FTP (20-21) out. With this setup, I'm neither able to list nor get files from FTP servers. ncftp /pub/vim/patches > ls connect failed: Permission denied. Falling back to PORT instead of PASV mode. What's wrong here? -Andre...

  1. #1

    Default Brickhouse firewall and FTP

    Hi there,

    My Brickhouse firewall setup first blocks all TCP and UDP ports in
    and out, then opens FTP (20-21) out. With this setup, I'm neither
    able to list nor get files from FTP servers.

    ncftp /pub/vim/patches > ls
    connect failed: Permission denied.
    Falling back to PORT instead of PASV mode.

    What's wrong here?

    -Andre

    Andre Guest

  2. #2

    Default Re: Brickhouse firewall and FTP

    * Andre Berger <de>, 2004-03-01 11:46 +0100: 
    TCP ^^^^^^^^^^^ , sorry 

    -Andre

    Andre Guest

  3. #3

    Default Re: Brickhouse firewall and FTP

    On Mon, 1 Mar 2004 11:45:27 +0100,
    Andre Berger (de) wrote: 

    It is very hard to tell without seeing the actual rules. Could you
    post the output of the command `sudo ipfw show`.

    --
    Bev A. Kupf
    "The lyfe so short, the craft so long to lerne" -- Chaucer
    Tintin turns 75 <http://www.tintin.com>
    Bev Guest

  4. #4

    Default Re: Brickhouse firewall and FTP

    * Bev A. Kupf <net>, 2004-03-01 13:56 +0100: 
    >
    > It is very hard to tell without seeing the actual rules. Could you
    > post the output of the command `sudo ipfw show`.[/ref]

    Sorry, here it comes. Opening 20-21 UDP outgoing actually made FTP
    possible (see output), but as a firewall newbie, I still don't
    understand why it should be necessary. Also, comments on the rules
    are appreciated!

    -Andre

    --
    May as well be hung for a sheep as a lamb

    01000 49165 6131425 allow ip from any to any via lo*
    01003 0 0 check-state
    01004 1 40 allow tcp from any to any established
    01005 0 0 allow ip from any to any frag
    01006 4 224 allow icmp from any to any icmptype 0,3,4,11,12,13,14
    02000 0 0 unreach host log logamount 65535 ip from any to any via ppp0 ipopt ssrr,lsrr
    02001 0 0 allow udp from any 5353 to any 5353 via ppp0
    02002 150 13839 allow udp from any to any 53 keep-state out xmit ppp0
    02003 2 156 deny log logamount 65535 udp from any to any 1-1023 in recv ppp0
    02004 0 0 deny log logamount 65535 udp from any to any 1024-65535 in recv ppp0
    02005 9 444 deny log logamount 65535 tcp from any to any 1-1023 in recv ppp0 setup
    02006 0 0 deny log logamount 65535 tcp from any to any 1024-65535 in recv ppp0 setup
    02007 0 0 allow tcp from any to any 22 keep-state in recv ppp0 setup
    02008 0 0 allow tcp from any to any 115 keep-state in recv ppp0 setup
    02009 0 0 allow udp from any to any 20-21 keep-state out xmit ppp0
    02010 0 0 allow tcp from any to any 20-21 keep-state out xmit ppp0 setup
    02011 0 0 allow tcp from any to any 22 keep-state out xmit ppp0 setup
    02012 0 0 allow tcp from any to any 23 keep-state out xmit ppp0 setup
    02013 0 0 allow tcp from any to any 25 keep-state out xmit ppp0 setup
    02014 2340 1170418 allow tcp from any to any 80 keep-state out xmit ppp0 setup
    02015 325 47610 allow tcp from any to any 110 keep-state out xmit ppp0 setup
    02016 0 0 allow tcp from any to any 113 keep-state out xmit ppp0 setup
    02017 0 0 allow tcp from any to any 115 keep-state out xmit ppp0 setup
    02018 256 28504 allow tcp from any to any 119 keep-state out xmit ppp0 setup
    02019 0 0 allow tcp from any to any 123 keep-state out xmit ppp0 setup
    02020 0 0 allow tcp from any to any 137-139 keep-state out xmit ppp0 setup
    02021 0 0 allow tcp from any to any 143 keep-state out xmit ppp0 setup
    02022 0 0 allow tcp from any to any 389 keep-state out xmit ppp0 setup
    02023 0 0 allow tcp from any to any 443 keep-state out xmit ppp0 setup
    02024 0 0 allow tcp from any to any 548 keep-state out xmit ppp0 setup
    02025 0 0 allow tcp from any to any 631 keep-state out xmit ppp0 setup
    02026 0 0 allow tcp from any to any 636 keep-state out xmit ppp0 setup
    02027 0 0 allow tcp from any to any 873 keep-state out xmit ppp0 setup
    02028 0 0 allow tcp from any to any 1494 keep-state out xmit ppp0 setup
    02029 0 0 allow tcp from any to any 3031 keep-state out xmit ppp0 setup
    02030 0 0 allow tcp from any to any 51134 keep-state out xmit ppp0 setup
    02031 0 0 allow tcp from any to any 51770 keep-state out xmit ppp0 setup
    03000 0 0 unreach host log logamount 65535 ip from any to any via en0 ipopt ssrr,lsrr
    03001 0 0 allow udp from any 5353 to any 5353 via en0
    03002 0 0 allow udp from any to any 53 keep-state out xmit en0
    03003 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1-1023 in recv en0
    03004 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1024-65535 in recv en0
    03005 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1-1023 in recv en0 setup
    03006 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1024-65535 in recv en0 setup
    03007 0 0 allow tcp from any to 131.220.90.233 22 keep-state in recv en0 setup
    03008 0 0 allow tcp from any to 131.220.90.233 115 keep-state in recv en0 setup
    03009 0 0 allow udp from 131.220.90.233 to any 20-21 keep-state out xmit en0
    03010 0 0 allow tcp from 131.220.90.233 to any 20-21 keep-state out xmit en0 setup
    03011 0 0 allow tcp from 131.220.90.233 to any 22 keep-state out xmit en0 setup
    03012 0 0 allow tcp from 131.220.90.233 to any 23 keep-state out xmit en0 setup
    03013 0 0 allow tcp from 131.220.90.233 to any 25 keep-state out xmit en0 setup
    03014 0 0 allow tcp from 131.220.90.233 to any 80 keep-state out xmit en0 setup
    03015 0 0 allow tcp from 131.220.90.233 to any 110 keep-state out xmit en0 setup
    03016 0 0 allow tcp from 131.220.90.233 to any 113 keep-state out xmit en0 setup
    03017 0 0 allow tcp from 131.220.90.233 to any 115 keep-state out xmit en0 setup
    03018 0 0 allow tcp from 131.220.90.233 to any 119 keep-state out xmit en0 setup
    03019 0 0 allow tcp from 131.220.90.233 to any 123 keep-state out xmit en0 setup
    03020 0 0 allow tcp from 131.220.90.233 to any 137-139 keep-state out xmit en0 setup
    03021 0 0 allow tcp from 131.220.90.233 to any 143 keep-state out xmit en0 setup
    03022 0 0 allow tcp from 131.220.90.233 to any 389 keep-state out xmit en0 setup
    03023 0 0 allow tcp from 131.220.90.233 to any 443 keep-state out xmit en0 setup
    03024 0 0 allow tcp from 131.220.90.233 to any 548 keep-state out xmit en0 setup
    03025 0 0 allow tcp from 131.220.90.233 to any 631 keep-state out xmit en0 setup
    03026 0 0 allow tcp from 131.220.90.233 to any 636 keep-state out xmit en0 setup
    03027 0 0 allow tcp from 131.220.90.233 to any 873 keep-state out xmit en0 setup
    03028 0 0 allow tcp from 131.220.90.233 to any 1494 keep-state out xmit en0 setup
    03029 0 0 allow tcp from 131.220.90.233 to any 3031 keep-state out xmit en0 setup
    03030 0 0 allow tcp from 131.220.90.233 to any 51134 keep-state out xmit en0 setup
    03031 0 0 allow tcp from 131.220.90.233 to any 51770 keep-state out xmit en0 setup
    04000 0 0 unreach host log logamount 65535 ip from any to any via en0 ipopt ssrr,lsrr
    04001 0 0 allow udp from any 5353 to any 5353 via en0
    04002 0 0 allow udp from any to any 53 keep-state out xmit en0
    04003 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1-1023 in recv en0
    04004 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1024-65535 in recv en0
    04005 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1-1023 in recv en0 setup
    04006 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1024-65535 in recv en0 setup
    04007 0 0 allow tcp from any to 131.220.90.233 22 keep-state in recv en0 setup
    04008 0 0 allow tcp from any to 131.220.90.233 115 keep-state in recv en0 setup
    04009 0 0 allow udp from 131.220.90.233 to any 20-21 keep-state out xmit en0
    04010 0 0 allow tcp from 131.220.90.233 to any 20-21 keep-state out xmit en0 setup
    04011 0 0 allow tcp from 131.220.90.233 to any 22 keep-state out xmit en0 setup
    04012 0 0 allow tcp from 131.220.90.233 to any 23 keep-state out xmit en0 setup
    04013 0 0 allow tcp from 131.220.90.233 to any 25 keep-state out xmit en0 setup
    04014 0 0 allow tcp from 131.220.90.233 to any 80 keep-state out xmit en0 setup
    04015 0 0 allow tcp from 131.220.90.233 to any 110 keep-state out xmit en0 setup
    04016 0 0 allow tcp from 131.220.90.233 to any 113 keep-state out xmit en0 setup
    04017 0 0 allow tcp from 131.220.90.233 to any 115 keep-state out xmit en0 setup
    04018 0 0 allow tcp from 131.220.90.233 to any 119 keep-state out xmit en0 setup
    04019 0 0 allow tcp from 131.220.90.233 to any 123 keep-state out xmit en0 setup
    04020 0 0 allow tcp from 131.220.90.233 to any 137-139 keep-state out xmit en0 setup
    04021 0 0 allow tcp from 131.220.90.233 to any 143 keep-state out xmit en0 setup
    04022 0 0 allow tcp from 131.220.90.233 to any 389 keep-state out xmit en0 setup
    04023 0 0 allow tcp from 131.220.90.233 to any 443 keep-state out xmit en0 setup
    04024 0 0 allow tcp from 131.220.90.233 to any 548 keep-state out xmit en0 setup
    04025 0 0 allow tcp from 131.220.90.233 to any 631 keep-state out xmit en0 setup
    04026 0 0 allow tcp from 131.220.90.233 to any 636 keep-state out xmit en0 setup
    04027 0 0 allow tcp from 131.220.90.233 to any 873 keep-state out xmit en0 setup
    04028 0 0 allow tcp from 131.220.90.233 to any 1494 keep-state out xmit en0 setup
    04029 0 0 allow tcp from 131.220.90.233 to any 3031 keep-state out xmit en0 setup
    04030 0 0 allow tcp from 131.220.90.233 to any 51134 keep-state out xmit en0 setup
    04031 0 0 allow tcp from 131.220.90.233 to any 51770 keep-state out xmit en0 setup
    05000 0 0 unreach host log logamount 65535 ip from any to any via en0 ipopt ssrr,lsrr
    05001 0 0 allow udp from any 5353 to any 5353 via en0
    05002 0 0 allow udp from any to any 53 keep-state out xmit en0
    05003 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1-1023 in recv en0
    05004 0 0 deny log logamount 65535 udp from any to 131.220.90.233 1024-65535 in recv en0
    05005 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1-1023 in recv en0 setup
    05006 0 0 deny log logamount 65535 tcp from any to 131.220.90.233 1024-65535 in recv en0 setup
    05007 0 0 allow tcp from any to 131.220.90.233 22 keep-state in recv en0 setup
    05008 0 0 allow tcp from any to 131.220.90.233 115 keep-state in recv en0 setup
    05009 0 0 allow udp from 131.220.90.233 to any 20-21 keep-state out xmit en0
    05010 0 0 allow tcp from 131.220.90.233 to any 20-21 keep-state out xmit en0 setup
    05011 0 0 allow tcp from 131.220.90.233 to any 22 keep-state out xmit en0 setup
    05012 0 0 allow tcp from 131.220.90.233 to any 23 keep-state out xmit en0 setup
    05013 0 0 allow tcp from 131.220.90.233 to any 25 keep-state out xmit en0 setup
    05014 0 0 allow tcp from 131.220.90.233 to any 80 keep-state out xmit en0 setup
    05015 0 0 allow tcp from 131.220.90.233 to any 110 keep-state out xmit en0 setup
    05016 0 0 allow tcp from 131.220.90.233 to any 113 keep-state out xmit en0 setup
    05017 0 0 allow tcp from 131.220.90.233 to any 115 keep-state out xmit en0 setup
    05018 0 0 allow tcp from 131.220.90.233 to any 119 keep-state out xmit en0 setup
    05019 0 0 allow tcp from 131.220.90.233 to any 123 keep-state out xmit en0 setup
    05020 0 0 allow tcp from 131.220.90.233 to any 137-139 keep-state out xmit en0 setup
    05021 0 0 allow tcp from 131.220.90.233 to any 143 keep-state out xmit en0 setup
    05022 0 0 allow tcp from 131.220.90.233 to any 389 keep-state out xmit en0 setup
    05023 0 0 allow tcp from 131.220.90.233 to any 443 keep-state out xmit en0 setup
    05024 0 0 allow tcp from 131.220.90.233 to any 548 keep-state out xmit en0 setup
    05025 0 0 allow tcp from 131.220.90.233 to any 631 keep-state out xmit en0 setup
    05026 0 0 allow tcp from 131.220.90.233 to any 636 keep-state out xmit en0 setup
    05027 0 0 allow tcp from 131.220.90.233 to any 873 keep-state out xmit en0 setup
    05028 0 0 allow tcp from 131.220.90.233 to any 1494 keep-state out xmit en0 setup
    05029 0 0 allow tcp from 131.220.90.233 to any 3031 keep-state out xmit en0 setup
    05030 0 0 allow tcp from 131.220.90.233 to any 51134 keep-state out xmit en0 setup
    05031 0 0 allow tcp from 131.220.90.233 to any 51770 keep-state out xmit en0 setup
    06000 0 0 unreach host log logamount 65535 ip from any to any via ppp0 ipopt ssrr,lsrr
    06001 0 0 allow udp from any 5353 to any 5353 via ppp0
    06002 0 0 allow udp from any to any 53 keep-state out xmit ppp0
    06003 0 0 deny log logamount 65535 udp from any to any 1-1023 in recv ppp0
    06004 0 0 deny log logamount 65535 udp from any to any 1024-65535 in recv ppp0
    06005 0 0 deny log logamount 65535 tcp from any to any 1-1023 in recv ppp0 setup
    06006 0 0 deny log logamount 65535 tcp from any to any 1024-65535 in recv ppp0 setup
    06007 0 0 allow tcp from any to any 22 keep-state in recv ppp0 setup
    06008 0 0 allow tcp from any to any 115 keep-state in recv ppp0 setup
    06009 0 0 allow udp from any to any 20-21 keep-state out xmit ppp0
    06010 0 0 allow tcp from any to any 20-21 keep-state out xmit ppp0 setup
    06011 0 0 allow tcp from any to any 22 keep-state out xmit ppp0 setup
    06012 0 0 allow tcp from any to any 23 keep-state out xmit ppp0 setup
    06013 0 0 allow tcp from any to any 25 keep-state out xmit ppp0 setup
    06014 0 0 allow tcp from any to any 80 keep-state out xmit ppp0 setup
    06015 0 0 allow tcp from any to any 110 keep-state out xmit ppp0 setup
    06016 0 0 allow tcp from any to any 113 keep-state out xmit ppp0 setup
    06017 0 0 allow tcp from any to any 115 keep-state out xmit ppp0 setup
    06018 0 0 allow tcp from any to any 119 keep-state out xmit ppp0 setup
    06019 0 0 allow tcp from any to any 123 keep-state out xmit ppp0 setup
    06020 0 0 allow tcp from any to any 137-139 keep-state out xmit ppp0 setup
    06021 0 0 allow tcp from any to any 143 keep-state out xmit ppp0 setup
    06022 0 0 allow tcp from any to any 389 keep-state out xmit ppp0 setup
    06023 0 0 allow tcp from any to any 443 keep-state out xmit ppp0 setup
    06024 0 0 allow tcp from any to any 548 keep-state out xmit ppp0 setup
    06025 0 0 allow tcp from any to any 631 keep-state out xmit ppp0 setup
    06026 0 0 allow tcp from any to any 636 keep-state out xmit ppp0 setup
    06027 0 0 allow tcp from any to any 873 keep-state out xmit ppp0 setup
    06028 0 0 allow tcp from any to any 1494 keep-state out xmit ppp0 setup
    06029 0 0 allow tcp from any to any 3031 keep-state out xmit ppp0 setup
    06030 0 0 allow tcp from any to any 51134 keep-state out xmit ppp0 setup
    06031 0 0 allow tcp from any to any 51770 keep-state out xmit ppp0 setup
    07000 0 0 unreach host log logamount 65535 ip from any to any via en1 ipopt ssrr,lsrr
    07001 0 0 allow udp from any 5353 to any 5353 via en1
    07002 0 0 allow udp from any to any 53 keep-state out xmit en1
    07003 0 0 deny log logamount 65535 udp from any to 10.0.1.7 1-1023 in recv en1
    07004 0 0 deny log logamount 65535 udp from any to 10.0.1.7 1024-65535 in recv en1
    07005 0 0 deny log logamount 65535 tcp from any to 10.0.1.7 1-1023 in recv en1 setup
    07006 0 0 deny log logamount 65535 tcp from any to 10.0.1.7 1024-65535 in recv en1 setup
    07007 0 0 allow tcp from any to 10.0.1.7 22 keep-state in recv en1 setup
    07008 0 0 allow tcp from any to 10.0.1.7 115 keep-state in recv en1 setup
    07009 0 0 allow udp from 10.0.1.7 to any 20-21 keep-state out xmit en1
    07010 0 0 allow tcp from 10.0.1.7 to any 20-21 keep-state out xmit en1 setup
    07011 0 0 allow tcp from 10.0.1.7 to any 22 keep-state out xmit en1 setup
    07012 0 0 allow tcp from 10.0.1.7 to any 23 keep-state out xmit en1 setup
    07013 0 0 allow tcp from 10.0.1.7 to any 25 keep-state out xmit en1 setup
    07014 0 0 allow tcp from 10.0.1.7 to any 80 keep-state out xmit en1 setup
    07015 0 0 allow tcp from 10.0.1.7 to any 110 keep-state out xmit en1 setup
    07016 0 0 allow tcp from 10.0.1.7 to any 113 keep-state out xmit en1 setup
    07017 0 0 allow tcp from 10.0.1.7 to any 115 keep-state out xmit en1 setup
    07018 0 0 allow tcp from 10.0.1.7 to any 119 keep-state out xmit en1 setup
    07019 0 0 allow tcp from 10.0.1.7 to any 123 keep-state out xmit en1 setup
    07020 0 0 allow tcp from 10.0.1.7 to any 137-139 keep-state out xmit en1 setup
    07021 0 0 allow tcp from 10.0.1.7 to any 143 keep-state out xmit en1 setup
    07022 0 0 allow tcp from 10.0.1.7 to any 389 keep-state out xmit en1 setup
    07023 0 0 allow tcp from 10.0.1.7 to any 443 keep-state out xmit en1 setup
    07024 0 0 allow tcp from 10.0.1.7 to any 548 keep-state out xmit en1 setup
    07025 0 0 allow tcp from 10.0.1.7 to any 631 keep-state out xmit en1 setup
    07026 0 0 allow tcp from 10.0.1.7 to any 636 keep-state out xmit en1 setup
    07027 0 0 allow tcp from 10.0.1.7 to any 873 keep-state out xmit en1 setup
    07028 0 0 allow tcp from 10.0.1.7 to any 1494 keep-state out xmit en1 setup
    07029 0 0 allow tcp from 10.0.1.7 to any 3031 keep-state out xmit en1 setup
    07030 0 0 allow tcp from 10.0.1.7 to any 51134 keep-state out xmit en1 setup
    07031 0 0 allow tcp from 10.0.1.7 to any 51770 keep-state out xmit en1 setup
    08000 0 0 unreach host log logamount 65535 ip from any to any via ppp0 ipopt ssrr,lsrr
    08001 0 0 allow udp from any 5353 to any 5353 via ppp0
    08002 0 0 allow udp from any to any 53 keep-state out xmit ppp0
    08003 0 0 deny log logamount 65535 udp from any to any 1-1023 in recv ppp0
    08004 0 0 deny log logamount 65535 udp from any to any 1024-65535 in recv ppp0
    08005 0 0 deny log logamount 65535 tcp from any to any 1-1023 in recv ppp0 setup
    08006 0 0 deny log logamount 65535 tcp from any to any 1024-65535 in recv ppp0 setup
    08007 0 0 allow tcp from any to any 22 keep-state in recv ppp0 setup
    08008 0 0 allow tcp from any to any 115 keep-state in recv ppp0 setup
    08009 0 0 allow udp from any to any 20-21 keep-state out xmit ppp0
    08010 0 0 allow tcp from any to any 20-21 keep-state out xmit ppp0 setup
    08011 0 0 allow tcp from any to any 22 keep-state out xmit ppp0 setup
    08012 0 0 allow tcp from any to any 23 keep-state out xmit ppp0 setup
    08013 0 0 allow tcp from any to any 25 keep-state out xmit ppp0 setup
    08014 0 0 allow tcp from any to any 80 keep-state out xmit ppp0 setup
    08015 0 0 allow tcp from any to any 110 keep-state out xmit ppp0 setup
    08016 0 0 allow tcp from any to any 113 keep-state out xmit ppp0 setup
    08017 0 0 allow tcp from any to any 115 keep-state out xmit ppp0 setup
    08018 0 0 allow tcp from any to any 119 keep-state out xmit ppp0 setup
    08019 0 0 allow tcp from any to any 123 keep-state out xmit ppp0 setup
    08020 0 0 allow tcp from any to any 137-139 keep-state out xmit ppp0 setup
    08021 0 0 allow tcp from any to any 143 keep-state out xmit ppp0 setup
    08022 0 0 allow tcp from any to any 389 keep-state out xmit ppp0 setup
    08023 0 0 allow tcp from any to any 443 keep-state out xmit ppp0 setup
    08024 0 0 allow tcp from any to any 548 keep-state out xmit ppp0 setup
    08025 0 0 allow tcp from any to any 631 keep-state out xmit ppp0 setup
    08026 0 0 allow tcp from any to any 636 keep-state out xmit ppp0 setup
    08027 0 0 allow tcp from any to any 873 keep-state out xmit ppp0 setup
    08028 0 0 allow tcp from any to any 1494 keep-state out xmit ppp0 setup
    08029 0 0 allow tcp from any to any 3031 keep-state out xmit ppp0 setup
    08030 0 0 allow tcp from any to any 51134 keep-state out xmit ppp0 setup
    08031 0 0 allow tcp from any to any 51770 keep-state out xmit ppp0 setup
    52032 0 0 deny log logamount 65535 ip from any to any out xmit ppp0
    52033 0 0 deny log logamount 65535 ip from any to any in recv ppp0
    53032 0 0 deny log logamount 65535 ip from any to any out xmit en0
    53033 0 0 deny log logamount 65535 ip from any to any in recv en0
    54032 0 0 deny log logamount 65535 ip from any to any out xmit en0
    54033 0 0 deny log logamount 65535 ip from any to any in recv en0
    55032 0 0 deny log logamount 65535 ip from any to any out xmit en0
    55033 0 0 deny log logamount 65535 ip from any to any in recv en0
    56032 0 0 deny log logamount 65535 ip from any to any out xmit ppp0
    56033 0 0 deny log logamount 65535 ip from any to any in recv ppp0
    57032 0 0 deny log logamount 65535 ip from any to any out xmit en1
    57033 0 0 deny log logamount 65535 ip from any to any in recv en1
    58032 0 0 deny log logamount 65535 ip from any to any out xmit ppp0
    58033 0 0 deny log logamount 65535 ip from any to any in recv ppp0
    65535 5603 479671 allow ip from any to any
    ## Dynamic rules:
    02015 21 1306 (T 0, # 2) ty 0 tcp, 212.144.32.139 63210 <-> 128.146.216.13 110
    02002 1 80 (T 0, # 4) ty 0 udp, 212.144.61.253 50503 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 5) ty 0 udp, 212.144.61.253 50502 <-> 145.253.2.139 53
    02002 1 96 (T 0, # 6) ty 0 udp, 212.144.61.253 50501 <-> 145.253.2.139 53
    02018 68 14488 (T 0, # 8) ty 0 tcp, 212.144.61.253 63375 <-> 128.146.214.13 119
    02014 18 8244 (T 0, # 9) ty 0 tcp, 212.144.32.139 62941 <-> 80.146.204.15 80
    02002 1 85 (T 0, # 10) ty 0 udp, 212.144.32.139 50405 <-> 145.253.2.81 53
    02002 1 129 (T 0, # 11) ty 0 udp, 212.144.61.253 50504 <-> 145.253.2.139 53
    02002 1 129 (T 0, # 12) ty 0 udp, 212.144.61.253 50511 <-> 145.253.2.139 53
    02014 13 1612 (T 0, # 14) ty 0 tcp, 212.144.32.139 62938 <-> 80.146.204.15 80
    02002 1 118 (T 0, # 15) ty 0 udp, 212.144.61.253 50508 <-> 145.253.2.139 53
    02002 1 118 (T 0, # 16) ty 0 udp, 212.144.61.253 50515 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 17) ty 0 udp, 212.144.61.253 50514 <-> 145.253.2.139 53
    02014 9 882 (T 0, # 18) ty 0 tcp, 212.144.32.139 63075 <-> 66.151.149.170 80
    02014 17 10614 (T 0, # 19) ty 0 tcp, 212.144.32.139 62966 <-> 213.244.181.62 80
    02014 14 3174 (T 0, # 20) ty 0 tcp, 212.144.32.139 63168 <-> 80.146.204.15 80
    02002 1 141 (T 0, # 21) ty 0 udp, 212.144.61.253 50518 <-> 145.253.2.139 53
    02015 23 1410 (T 0, # 22) ty 0 tcp, 212.144.61.253 63371 <-> 128.146.216.14 110
    02018 37 2752 (T 0, # 23) ty 0 tcp, 212.144.61.253 63376 <-> 128.146.214.13 119
    02002 1 104 (T 0, # 24) ty 0 udp, 212.144.61.253 50523 <-> 145.253.2.139 53
    02014 14 3351 (T 0, # 27) ty 0 tcp, 212.144.32.139 62927 <-> 80.146.204.15 80
    02002 1 104 (T 0, # 28) ty 0 udp, 212.144.61.253 50527 <-> 145.253.2.139 53
    02018 36 2700 (T 0, # 30) ty 0 tcp, 212.144.32.139 63215 <-> 128.146.214.13 119
    02002 1 138 (T 0, # 31) ty 0 udp, 212.144.61.253 50524 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 32) ty 0 udp, 212.144.61.253 50531 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 33) ty 0 udp, 212.144.32.139 50382 <-> 145.253.2.81 53
    02002 1 127 (T 0, # 35) ty 0 udp, 212.144.61.253 50528 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 36) ty 0 udp, 212.144.61.253 50535 <-> 145.253.2.139 53
    02014 9 1200 (T 0, # 37) ty 0 tcp, 212.144.32.139 63067 <-> 66.35.250.165 80
    02014 9 1049 (T 0, # 38) ty 0 tcp, 212.144.32.139 63171 <-> 213.244.181.62 80
    02002 1 117 (T 0, # 39) ty 0 udp, 212.144.61.253 50532 <-> 145.253.2.139 53
    02002 1 120 (T 0, # 40) ty 0 udp, 212.144.61.253 50539 <-> 145.253.2.139 53
    02014 9 1061 (T 0, # 41) ty 0 tcp, 212.144.32.139 63180 <-> 213.244.181.62 80
    02014 9 1050 (T 0, # 42) ty 0 tcp, 212.144.32.139 63183 <-> 213.244.181.62 80
    02002 1 106 (T 0, # 43) ty 0 udp, 212.144.61.253 50536 <-> 145.253.2.139 53
    02014 9 1046 (T 0, # 44) ty 0 tcp, 212.144.32.139 63177 <-> 213.244.181.62 80
    02002 1 106 (T 0, # 48) ty 0 udp, 212.144.32.139 50437 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 49) ty 0 udp, 212.144.32.139 50436 <-> 145.253.2.139 53
    02002 1 117 (T 0, # 52) ty 0 udp, 212.144.32.139 50433 <-> 145.253.2.139 53
    02014 9 1150 (T 0, # 59) ty 0 tcp, 212.144.32.139 62789 <-> 66.35.250.165 80
    02014 9 1345 (T 0, # 64) ty 0 tcp, 212.144.32.139 62988 <-> 212.172.17.151 80
    02014 9 1196 (T 0, # 65) ty 0 tcp, 212.144.32.139 63156 <-> 213.244.181.46 80
    02015 23 1418 (T 0, # 68) ty 0 tcp, 212.144.32.139 62895 <-> 128.146.216.14 110
    02014 9 1210 (T 0, # 69) ty 0 tcp, 212.144.32.139 63136 <-> 213.244.181.62 80
    02014 9 1221 (T 0, # 70) ty 0 tcp, 212.144.32.139 63139 <-> 213.244.181.62 80
    02014 11 3140 (T 0, # 71) ty 0 tcp, 212.144.32.139 62937 <-> 213.244.181.69 80
    02014 9 1927 (T 0, # 74) ty 0 tcp, 212.144.32.139 63151 <-> 213.244.181.62 80
    02015 39 9567 (T 0, # 81) ty 0 tcp, 212.144.61.253 63352 <-> 131.220.14.186 110
    02015 9 570 (T 0, # 92) ty 0 tcp, 212.144.61.253 63349 <-> 131.220.14.186 110
    02014 10 2881 (T 0, # 96) ty 0 tcp, 212.144.32.139 63109 <-> 213.244.181.62 80
    02014 13 2210 (T 0, # 98) ty 0 tcp, 212.144.32.139 62902 <-> 80.146.204.15 80
    02014 13 2160 (T 0, # 99) ty 0 tcp, 212.144.32.139 63159 <-> 80.146.204.15 80
    02014 13 1696 (T 0, # 103) ty 0 tcp, 212.144.32.139 63106 <-> 213.244.181.62 80
    02014 12 3293 (T 0, # 105) ty 0 tcp, 212.144.32.139 63165 <-> 80.146.204.15 80
    02014 76 59774 (T 0, # 106) ty 0 tcp, 212.144.32.139 62910 <-> 80.146.204.15 80
    02014 10 2776 (T 0, # 107) ty 0 tcp, 212.144.32.139 63118 <-> 213.244.181.62 80
    02014 12 3045 (T 0, # 108) ty 0 tcp, 212.144.32.139 62904 <-> 80.146.204.15 80
    02014 9 1295 (T 0, # 109) ty 0 tcp, 212.144.32.139 62963 <-> 213.244.181.69 80
    02014 13 2627 (T 0, # 110) ty 0 tcp, 212.144.32.139 63162 <-> 80.146.204.15 80
    02014 17 9266 (T 0, # 110) ty 0 tcp, 212.144.32.139 63115 <-> 213.244.181.62 80
    02014 13 3738 (T 0, # 111) ty 0 tcp, 212.144.32.139 63114 <-> 213.244.181.62 80
    02014 9 1055 (T 0, # 113) ty 0 tcp, 212.144.32.139 63124 <-> 213.244.181.62 80
    02014 18 9999 (T 0, # 114) ty 0 tcp, 212.144.32.139 63127 <-> 213.244.181.62 80
    02014 9 1148 (T 0, # 115) ty 0 tcp, 212.144.32.139 62957 <-> 213.244.181.69 80
    02014 11 2920 (T 0, # 116) ty 0 tcp, 212.144.32.139 63121 <-> 213.244.181.62 80
    02014 9 1923 (T 0, # 121) ty 0 tcp, 212.144.32.139 62951 <-> 213.244.181.69 80
    02014 23 12464 (T 0, # 121) ty 0 tcp, 212.144.32.139 62893 <-> 80.146.204.15 80
    02014 9 1923 (T 0, # 122) ty 0 tcp, 212.144.32.139 62948 <-> 213.244.181.69 80
    02014 9 1210 (T 0, # 127) ty 0 tcp, 212.144.32.139 63130 <-> 213.244.181.62 80
    02014 168 138421 (T 0, # 128) ty 0 tcp, 212.144.32.139 63245 <-> 12.149.183.86 80
    02014 9 1162 (T 0, # 129) ty 0 tcp, 212.144.32.139 63231 <-> 66.35.250.165 80
    02015 28 5363 (T 0, # 130) ty 0 tcp, 212.144.32.139 63197 <-> 131.220.14.186 110
    02014 9 1019 (T 0, # 131) ty 0 tcp, 212.144.61.253 63344 <-> 63.208.196.94 80
    02014 13 2617 (T 0, # 132) ty 0 tcp, 212.144.32.139 63056 <-> 80.146.204.15 80
    02015 9 570 (T 0, # 133) ty 0 tcp, 212.144.32.139 63194 <-> 131.220.14.186 110
    02002 1 129 (T 0, # 134) ty 0 udp, 212.144.32.139 50355 <-> 145.253.2.139 53
    02014 39 25607 (T 0, # 136) ty 0 tcp, 212.144.32.139 63237 <-> 12.149.183.86 80
    02014 16 8281 (T 0, # 137) ty 0 tcp, 212.144.32.139 62834 <-> 213.253.19.32 80
    02014 28 17275 (T 0, # 138) ty 0 tcp, 212.144.32.139 62996 <-> 213.244.181.69 80
    02002 1 93 (T 0, # 138) ty 0 udp, 212.144.32.139 50367 <-> 145.253.2.139 53
    02014 146 133100 (T 0, # 140) ty 0 tcp, 212.144.32.139 63218 <-> 66.35.250.165 80
    02014 10 3342 (T 0, # 143) ty 0 tcp, 212.144.32.139 63234 <-> 12.149.183.86 80
    02014 25 7546 (T 0, # 145) ty 0 tcp, 212.144.32.139 63092 <-> 213.244.181.62 80
    02002 1 75 (T 0, # 146) ty 0 udp, 212.144.32.139 50343 <-> 145.253.2.139 53
    02014 18 9962 (T 0, # 148) ty 0 tcp, 212.144.32.139 62831 <-> 213.253.19.32 80
    02014 28 17019 (T 0, # 150) ty 0 tcp, 212.144.32.139 63091 <-> 213.244.181.62 80
    02014 9 2137 (T 0, # 151) ty 0 tcp, 212.144.32.139 62828 <-> 213.253.19.32 80
    02002 1 129 (T 0, # 153) ty 0 udp, 212.144.32.139 50348 <-> 145.253.2.139 53
    02014 14 1736 (T 0, # 154) ty 0 tcp, 212.144.32.139 63103 <-> 213.244.181.62 80
    02014 12 2110 (T 0, # 155) ty 0 tcp, 212.144.32.139 63055 <-> 80.146.204.15 80
    02014 11 4274 (T 0, # 156) ty 0 tcp, 212.144.32.139 63081 <-> 213.244.181.46 80
    02002 1 75 (T 0, # 157) ty 0 udp, 212.144.32.139 50344 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 158) ty 0 udp, 212.144.32.139 50347 <-> 145.253.2.139 53
    02014 9 2380 (T 0, # 159) ty 0 tcp, 212.144.32.139 62820 <-> 213.253.19.32 80
    02002 1 80 (T 0, # 159) ty 0 udp, 212.144.32.139 50346 <-> 145.253.2.139 53
    02014 11 2732 (T 0, # 160) ty 0 tcp, 212.144.32.139 62811 <-> 213.253.19.32 80
    02014 24 8836 (T 0, # 161) ty 0 tcp, 212.144.32.139 63093 <-> 80.146.204.15 80
    02014 14 6402 (T 0, # 162) ty 0 tcp, 212.144.32.139 63036 <-> 213.244.181.69 80
    02014 9 1497 (T 0, # 166) ty 0 tcp, 212.144.32.139 62813 <-> 213.253.19.32 80
    02014 13 1537 (T 0, # 167) ty 0 tcp, 212.144.32.139 63033 <-> 213.244.181.69 80
    02014 23 7051 (T 0, # 168) ty 0 tcp, 212.144.32.139 63030 <-> 213.244.181.69 80
    02018 37 2828 (T 0, # 169) ty 0 tcp, 212.144.32.139 63064 <-> 128.146.214.13 119
    02014 28 15393 (T 0, # 172) ty 0 tcp, 212.144.32.139 63096 <-> 80.146.204.15 80
    02014 23 5978 (T 0, # 173) ty 0 tcp, 212.144.32.139 63027 <-> 213.244.181.69 80
    02014 18 9337 (T 0, # 174) ty 0 tcp, 212.144.32.139 63024 <-> 213.244.181.69 80
    02014 83 74163 (T 0, # 178) ty 0 tcp, 212.144.32.139 63078 <-> 80.146.204.15 80
    02014 10 2883 (T 0, # 179) ty 0 tcp, 212.144.32.139 63021 <-> 213.244.181.69 80
    02014 11 3330 (T 0, # 180) ty 0 tcp, 212.144.32.139 63018 <-> 213.244.181.69 80
    02014 9 1599 (T 0, # 184) ty 0 tcp, 212.144.32.139 63014 <-> 213.244.181.69 80
    02014 13 2227 (T 0, # 189) ty 0 tcp, 212.144.32.139 63011 <-> 213.244.181.69 80
    02014 16 2295 (T 0, # 190) ty 0 tcp, 212.144.32.139 63008 <-> 213.244.181.69 80
    02015 33 5469 (T 0, # 193) ty 0 tcp, 212.144.32.139 63213 <-> 192.108.102.201 110
    02002 1 141 (T 0, # 193) ty 0 udp, 212.144.32.139 50420 <-> 145.253.2.139 53
    02014 10 1691 (T 0, # 195) ty 0 tcp, 212.144.32.139 63148 <-> 62.146.220.180 80
    02002 1 118 (T 0, # 196) ty 0 udp, 212.144.32.139 50417 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 197) ty 0 udp, 212.144.32.139 50416 <-> 145.253.2.139 53
    02002 1 127 (T 0, # 200) ty 0 udp, 212.144.32.139 50429 <-> 145.253.2.139 53
    02002 1 104 (T 0, # 201) ty 0 udp, 212.144.32.139 50428 <-> 145.253.2.139 53
    02002 1 138 (T 0, # 204) ty 0 udp, 212.144.32.139 50425 <-> 145.253.2.139 53
    02002 1 85 (T 0, # 209) ty 0 udp, 212.144.32.139 50404 <-> 145.253.2.139 53
    02002 1 129 (T 0, # 211) ty 0 udp, 212.144.32.139 50406 <-> 145.253.2.139 53
    02015 35 5529 (T 0, # 212) ty 0 tcp, 212.144.61.253 63374 <-> 192.108.102.201 110
    02002 1 98 (T 0, # 213) ty 0 udp, 212.144.32.139 50400 <-> 145.253.2.139 53
    02002 1 284 (T 0, # 214) ty 0 udp, 212.144.32.139 50403 <-> 145.253.2.139 53
    02002 1 282 (T 0, # 215) ty 0 udp, 212.144.32.139 50402 <-> 145.253.2.139 53
    02002 1 129 (T 0, # 216) ty 0 udp, 212.144.32.139 50413 <-> 145.253.2.139 53
    02014 12 1443 (T 0, # 217) ty 0 tcp, 212.144.32.139 62989 <-> 80.146.204.15 80
    02014 11 1403 (T 0, # 218) ty 0 tcp, 212.144.32.139 62990 <-> 80.146.204.15 80
    02014 14 6160 (T 0, # 219) ty 0 tcp, 212.144.32.139 63045 <-> 213.244.181.69 80
    02002 1 80 (T 0, # 220) ty 0 udp, 212.144.32.139 50409 <-> 145.253.2.139 53
    02015 9 570 (T 0, # 222) ty 0 tcp, 212.144.32.139 62849 <-> 131.220.14.186 110
    02002 1 118 (T 0, # 223) ty 0 udp, 212.144.32.139 50410 <-> 145.253.2.139 53
    02002 1 106 (T 0, # 225) ty 0 udp, 212.144.32.139 50388 <-> 145.253.2.139 53
    02002 1 266 (T 0, # 226) ty 0 udp, 212.144.32.139 50391 <-> 145.253.2.139 53
    02014 148 133190 (T 0, # 229) ty 0 tcp, 212.144.32.139 62875 <-> 66.35.250.165 80
    02002 1 268 (T 0, # 230) ty 0 udp, 212.144.32.139 50387 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 231) ty 0 udp, 212.144.32.139 50386 <-> 145.253.2.139 53
    02002 1 98 (T 0, # 232) ty 0 udp, 212.144.32.139 50397 <-> 145.253.2.139 53
    02002 1 95 (T 0, # 233) ty 0 udp, 212.144.32.139 50396 <-> 145.253.2.139 53
    02002 1 128 (T 0, # 234) ty 0 udp, 212.144.32.139 50399 <-> 145.253.2.139 53
    02002 1 98 (T 0, # 235) ty 0 udp, 212.144.32.139 50398 <-> 145.253.2.139 53
    02002 1 76 (T 0, # 236) ty 0 udp, 212.144.32.139 50393 <-> 145.253.2.139 53
    02002 1 82 (T 0, # 237) ty 0 udp, 212.144.32.139 50392 <-> 145.253.2.139 53
    02002 5 506 (T 0, # 239) ty 0 udp, 212.144.32.139 50394 <-> 145.253.2.139 53
    02002 1 127 (T 0, # 240) ty 0 udp, 212.144.32.139 50373 <-> 145.253.2.139 53
    02002 1 104 (T 0, # 241) ty 0 udp, 212.144.32.139 50372 <-> 145.253.2.139 53
    02015 40 5885 (T 0, # 242) ty 0 tcp, 212.144.32.139 62942 <-> 192.108.102.201 110
    02002 1 138 (T 0, # 244) ty 0 udp, 212.144.32.139 50369 <-> 145.253.2.139 53
    02002 1 104 (T 0, # 245) ty 0 udp, 212.144.32.139 50368 <-> 145.253.2.139 53
    02002 1 80 (T 0, # 248) ty 0 udp, 212.144.32.139 50381 <-> 145.253.2.139 53
    02002 1 266 (T 0, # 249) ty 0 udp, 212.144.32.139 50380 <-> 145.253.2.139 53
    02002 1 117 (T 0, # 250) ty 0 udp, 212.144.32.139 50383 <-> 145.253.2.139 53
    02002 1 82 (T 0, # 253) ty 0 udp, 212.144.32.139 50376 <-> 145.253.2.139 53

    Andre Guest

Similar Threads

  1. XP Firewall
    By Jessica in forum Windows Setup, Administration & Security
    Replies: 6
    Last Post: August 16th, 12:04 AM
  2. USE FIREWALL
    By Ted in forum Windows Setup, Administration & Security
    Replies: 2
    Last Post: August 13th, 02:38 AM
  3. Can't set firewall on.
    By Steve in forum Windows Networking
    Replies: 3
    Last Post: July 13th, 11:37 PM
  4. XP Firewall
    By GT in forum Windows XP/2000/ME
    Replies: 0
    Last Post: July 12th, 05:56 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139