You must create a firewall configuration file. Check the one which FBSD already uses as sample, /etc/rc.firewall, adjust it to your needs, and enable the firewall at boot time [add two lines: firewall_enable="YES" and firewall_type="SIMPLE" in /etc/rc.conf, start the firewall using this line at runtime:# sh /etc/rc.firewall, and you're finished. But be careful, you should have the console close, especially if you made a mistake somewhere...
A firewall is yet another item that can be not only fingerprinted, but exploited and bypassed, only to hit that much harder on admins lulled into a false sense of security...
For example, look at the recent developments with fragroute vs. snort. It can be used to perform very common attacks right under snort's nose without even a whimper... I realize that snort is probably not what you had in mind, but I am willing to bet this becomes a very widely used attack tool to bypass both IDS and firewalls completely, until a better solution is attained.
I have an unloaded T5140 machine and want to access the ILOM for the first time and subsequently the network port after that., and then load Solaris 10 the final January 2011 build.
The first part is what confuses me -the cabling.
I am coming from a Windows machine (w/appropriate... (5 Replies)
In my environment, I have few T5220. On the iLOM Management Card, I have both Network and Serial port are cabled, I don't have any issues while I try to connect using Network Management port, but when I try to connect the serial port for the same server which is actually connected... (3 Replies)
How can I check the architecture version on a sun box?
So far I've tried;
arch -k which gives
and uname -a which gives
SunOS <hostname> 5.8 Generic_108528-22 sun4u sparc SUNW,Ultra-4
but nothing which definitively states sparc11 or 111 - any ideas? (2 Replies)