Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Update | 8 comments | Create New Account
Click here to return to the 'Update' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Update
Authored by: pdrake on Dec 16, '01 03:02:03AM
I tried the "lo0" option but it didn't work for me. The ipfw that ships with OS X maybe doesn't support it (I know other *BSDs do)? I saw no mention of "lo0" in the ipfw man file either.

I found some connection problems with Napster. The way to fix this (other than "lo0") so it's blocking specifically what's coming from your local computer to your local computer (and solves these kind of conflicts) is below. "127.0.0.1" and "localhost" don't work, so don't try it.

File /etc/ppp/ip-up which is:

#!/bin/sh
myip=$(/sbin/ifconfig ppp0 | grep inet | cut -d" " -f2)
/sbin/ipfw add 10000 deny tcp from $myip 49000-50000 to $myip 3000-4000 out via ppp0


File /etc/ppp/ip-down which is:

#!/bin/sh
/sbin/ipfw delete 10000


Make them as user root and don't forget to chmod a+x ip*

To see what's going in and out use this as user root: tcpdump -l -q

This works great, would like to know anyone that has problems. Dynamic IPs are a pain in the a$$, huh?

--Paul

[ Reply to This | # ]
Rule Number?
Authored by: Anonymous on Dec 17, '01 02:29:27AM

How do I know what rule number to use?



[ Reply to This | # ]
Rule Number?
Authored by: pdrake on Dec 17, '01 04:22:06AM

After any custom rules and before the "65535 allow ip from any to any"

If you use BrickHouse, put it right before the 5xxxx rules.



[ Reply to This | # ]