Login or Register to Ask a Question and Join Our Community


OS X Support RSS

Mac OS X 10.5 Leopard: About the Application Firewall

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems OS X (Apple) OS X Support RSS Mac OS X 10.5 Leopard: About the Application Firewall
# 1  
Old 11-21-2008
Mac OS X 10.5 Leopard: About the Application Firewall
Mac OS X 10.5 Leopard includes a new technology called the Application Firewall. One of the basic purposes of a firewall is to control connections made to your computer from other computers on the network. In most firewall software, you must know the network ports and protocols an application uses to communicate, in order to control that application's network connections. Note: This article applies to the version of the Application Firewall included with Mac OS X 10.5.1 and later. Update to Mac OS X 10.5.1 or later if you have not yet done so. The Firewall in Leopard is an Application Firewall. This type of firewall allows you to control connections on a per-application basis, rather than a per-port basis. This makes it easier for less experienced users to gain the benefits of firewall protection and helps prevent undesirable applications from taking control of network ports that have been opened for legitimate applications. The Firewall applies to the Internet protocols most commonly used by applications, TCP and UDP. It does not affect AppleTalk. The Firewall may be set to block incoming ICMP "pings" by enabling Stealth Mode in the Advanced settings. Earlier ipfw technology is still accessible from the command line (in Terminal) and the Application Firewall does not overrule rules set with ipfw; if ipfw blocks an incoming packet, the Application Firewall will not process it. This article applies to the version of the Application Firewall included with Mac OS X 10.5.1 and later.

More from Apple OS X Support ...
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. OS X (Apple)

Use a Serial Console with Mac OS X Leopard

I'm trying to use an old Commodore 128D as a terminal to access OS X's shell via a serial port. I've used 'screen' and 'zterm' to ensure the two machines are successfully interfaced. Instructions for opening up the serial console on other Unix-y operating systems don't work with OS X Leopard. ... (3 Replies)
Discussion started by: joecassara
3 Replies

2. OS X (Apple)

loading MAC X 5.0(leopard) on a X86 laptop

I want to install MAC X 5.x on my T60 Lenova laptop. I have the Original Mac X 5.0 installation media. I tried to install it on a blank hard disk in my laptop but it doesn't work. On the internet I found sites that offer torrent downloads but I can't use torrent downloads on my laptop. (Corp... (1 Reply)
Discussion started by: mndavies
1 Replies

3. Shell Programming and Scripting

mac backup script in leopard

Hi all I had a nice simple backup script on my mac running Tiger. I used an Automator 'Run Shell Script' command that loaded psync and backed up one directory on an external drive to a directory on another external drive. This was the command /usr/local/bin/runpsync 0 0 0... (1 Reply)
Discussion started by: Billy T
1 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

fwb_pix

fwb_pix(1)							 Firewall Builder							fwb_pix(1)

NAME

       fwb_ipt - Policy compiler for Cisco PIX

SYNOPSIS

       fwb_pix -fdata_file.xml [-V] [-dwdir] [-i] [-v] [-xc] [-xt] object_name

DESCRIPTION

       fwb_pix	is  firewall  policy  compiler	component  of Firewall Builder (see fwbuilder(1)). Compiler reads objects definitions and firewall
       description from the data file specified with "-f" option and generates resultant Cisco PIX configuration file. The configuration is  writ-
       ten to the file with the name the same as the name of the firewall object, plus extension ".fw".

       The data file and the name of the firewall objects must be specified on the command line. Other command line parameters are optional.

OPTIONS

       -f FILE
	      Specify the name of the data file to be processed.

       -d wdir
	      Specify  working	directory. Compiler creates file with PIX configuration in this directory.  If this parameter is missing, then PIX
	      configuration will be placed in the current working directory.

       -v     Be verbose: compiler prints diagnostic messages when it works.

       -V     Print version number and quit.

       -i     When this option is present, the last argument on the command line is supposed to be firewall object ID rather than its name

       -xc    When output file name is determined automatically (i.e. flags -o or -O are not present), the file name is composed  of  the  cluster
	      name  and  member firewall name rather than just member firewall name. This is used mostly for testing when the same member firewall
	      object can be a part of different clusters with different configurations.

       -xt    This flag makes compiler treat all fatal errors as warnings and continue	processing  rules.  Generated  configuration  script  most
	      likely will be incorrect but will include error message as a comment; this flag is used for testing and debugging.

URL

       Firewall Builder home page is located at the following URL: http://www.fwbuilder.org/

BUGS

       Please report bugs using bug tracking system on SourceForge:

       http://sourceforge.net/tracker/?group_id=5314&atid=105314

SEE ALSO

       fwbuilder(1), fwb_ipf(1), fwb_ipt(1) fwb_pf(1)

FWB
																	fwb_pix(1)