Home ] Up ]


First and foremost, it is almost IMPERATIVE that you have console access to the firewall machine.  It is not required, but it is VERY easy to find yourself locked out by a new rule that you just created!

You should definitely read the man page for ipfw(8), as it will give you pretty much all of the information that you need.  In addition, peruse the /etc/rc.firewall file and have a look at the different sets of rules in there.  It is a great place to start.

Finally, build your first firewall on a play box, not on a production machine.  It is well worth the time to sit back and play with a few rules, trying different things.  If you are anything like me, there is no substitute for hands-on experience.

This page will probably never be updated again because I have started testing IPFW2, and it looks GREAT!  Lots of new features, and it seems to be somewhat quicker than the old IPFW.  Check out that page for more information!



My name is Michael Oliver, and I can be contacted by email here.
The current time is Sunday, 21-Jan-2018 04:38:03 UTC.
This page was last modified on Friday, 11-Mar-2011 21:01:58 UTC.
This page has received 769 hits since November 07 2002.