RC.CONF_______________________________________________________ gateway_enable="YES" inetd_anable="YES" kern_securelevel_enable="NO" moused_enable="NO" moused_type="NO" sendmail_enable="NONE" sshd_enable="YES" # PPP ppp_nat="NO" ppp_enable="YES" ppp_mode="ddial" ppp_profile="t-online" keymap="german.iso" network_interfaces="rl0 rl1 lo" ifconfig_rl0="up" # NAT natd_program="/sbin/natd" natd_enable="YES" natd_interface="tun0" natd_flags="-dynamic -f /etc/natd.conf" # IPFW firewall_enable="YES" firewall_script="/etc/fw.rc" firewall_logging="YES" firewall_type="OPEN" # shutdown PC apm_enable="YES" apmd_enable="YES" # -- sysinstall generated deltas -- # Tue Mar 11 13:55:00 2003 hostname="Ladenserver.videogames" Firewall script:_______________________________________________ #!/bin/sh # rl0 # rl0 externes interface # rl1 internes interface # Um die firewall regeln erneut einzulesen, sprich die firewall neu # zu starten: # cd /etc # ./fw.rc # Das liest dann alla das ein was hier steht und die firewall rennt # mit diesen Angaben ipfw add 10 divert natd all from any to any via tun0 ipfw add allow ip from any to any via lo0 ipfw add allow ip from any to any via rl1 # Erlaubt alle Verbindungen welche von hier initiiert wurden ipfw add allow tcp from any to any out xmit tun0 setup # Wenn die Verbindung einmal hergestellt wurde, erlaube dieser offen zu stehen ipfw add allow tcp from any to any via tun0 established # CS ipfw add allow tcp from any to any 27015 ipfw add allow tcp from any 27015 to any ipfw add allow udp from any to any 27015 ipfw add allow udp from any 27015 to any ipfw add allow tcp from any to any 27010 ipfw add allow tcp from any 27010 to any ipfw add allow udp from any to any 27010 ipfw add allow udp from any 27010 to any ipfw add allow tcp from any to any 27011 ipfw add allow tcp from any 27011 to any ipfw add allow udp from any to any 27011 ipfw add allow udp from any 27011 to any ipfw add allow tcp from any to any 27012 ipfw add allow tcp from any 27012 to any ipfw add allow udp from any to any 27012 ipfw add allow udp from any 27012 to any ipfw add allow udp from any to any 5273 ipfw add allow udp from any 5273 to any ipfw add allow tcp from any to any 5273 ipfw add allow tcp from any 5273 to any ipfw add allow udp from any to any 7002 ipfw add allow udp from any 7002 to any ipfw add allow tcp from any to any 7002 ipfw add allow tcp from any 7002 to any #C&C Generals ipfw add allow tcp from any to any 29900 ipfw add allow tcp from any 29900 to any ipfw add allow udp from any to any 29900 ipfw add allow udp from any 29900 to any ipfw add allow tcp from any to any 27900 ipfw add allow tcp from any 27900 to any ipfw add allow udp from any to any 27900 ipfw add allow udp from any 27900 to any ipfw add allow tcp from any to any 4321 ipfw add allow tcp from any 4321 to any ipfw add allow udp from any to any 4321 ipfw add allow udp from any 4321 to any #Battlefield ipfw add allow udp from any to any 14567 ipfw add allow udp from any 14567 to any ipfw add allow udp from any to any 22000 ipfw add allow udp from any 22000 to any ipfw add allow tcp from any to any 28900 ipfw add allow tcp from any 28900 to any # emule ipfw add allow tcp from any to any 4662 ipfw add allow udp from any to any 4662 ipfw add allow log tcp from any to any 80 setup ipfw add allow log tcp from any to any 22 setup ipfw add allow log tcp from any to any 25 setup ipfw add allow log tcp from any to any 21 setup ipfw add allow log tcp from any to any 10000 setup # This sends a RESET to all ident packets. ipfw add reset log tcp from any to any 113 in recv tun0 # Erlaubt ausgehende DNS queries NUR auf die beiden angegebenen Server ipfw add allow udp from any to 194.25.2.131 53 out xmit tun0 ipfw add allow udp from any to 194.25.2.129 53 out xmit tun0 ipfw add allow tcp from any to 194.25.2.131 out xmit tun0 ipfw add allow tcp from any to 194.25.2.129 53 out xmit tun0 # Erlaubt die Antwort der DNS Nachfragen ipfw add allow udp from 194.25.2.131 53 to any in recv tun0 ipfw add allow udp from 194.25.2.129 53 to any in recv tun0 ipfw add allow tcp from 194.25.2.131 53 to any in recv tun0 ipfw add allow tcp from 194.25.2.129 53 to any in recv tun0 ipfw add allow tcp from 217.115.138.231 80 to any in recv tun0 # Loggt ICMP Anfragen (echo und dest. unreachable) == script kiddies ipfw add allow log icmp from any to any in recv tun0 icmptype 3 ipfw add allow log icmp from any to any in recv tun0 icmptype 8 # 2049 == NFS ipfw add deny log tcp from any to any 2049 in recv tun0 setup [global] create mask = 0666 interfaces = 192.168.0.100/255.255.255.0 directory mask = 0777 log file = /var/log/samba-log.%m printcap name = cups max log size = 50 domain master = no dns proxy = no password level = 8 encrypt passwords = yes preferred master = no printing = cups server string = Samba %v auf %L unter FreeBSD allow hosts = 192.168.0. 192.168.1. 127. workgroup = VIDEOGAMES socket options = TCP_NODELAY netbios name = Samba server local master = no client code page = 850 security = user username level = 8 character set = iso8859-1 os level = 33 lock directory = /var/lock/samba socket options = TCP_NODELAY wins support = yes [share] guest ok = yes path = /home/Andreas [daten] comment = daten path = /home/daten public = yes writeable = yes printable = no