Available firewall rules are to open for me. Would like to have more control. Something like below -
02000 2578 433874 allow ip from any to any via lo*
02010 0 0 deny ip from 127.0.0.0/8 to any in
02020 0 0 deny ip from any to 127.0.0.0/8 in
02030 0 0 deny ip from 224.0.0.0/3 to any in
02040 0 0 deny tcp from any to 224.0.0.0/3 in
02050 2537 1056382 allow tcp from any to any out
02060 4517 326688 allow tcp from any to any established
02065 1 48 allow tcp from trusted.public.ip.address to me dst-port 22
02066 2 120 deny log tcp from any to me dst-port 22
12190 0 0 deny log tcp from any to any
65535 143 24019 allow ip from any to any
I could turn off the current firewall from preferences, sharing firewall and start it up manually.
Where would the best place be to do this ?
/etc/rc.local ?
02000 2578 433874 allow ip from any to any via lo*
02010 0 0 deny ip from 127.0.0.0/8 to any in
02020 0 0 deny ip from any to 127.0.0.0/8 in
02030 0 0 deny ip from 224.0.0.0/3 to any in
02040 0 0 deny tcp from any to 224.0.0.0/3 in
02050 2537 1056382 allow tcp from any to any out
02060 4517 326688 allow tcp from any to any established
02065 1 48 allow tcp from trusted.public.ip.address to me dst-port 22
02066 2 120 deny log tcp from any to me dst-port 22
12190 0 0 deny log tcp from any to any
65535 143 24019 allow ip from any to any
I could turn off the current firewall from preferences, sharing firewall and start it up manually.
Where would the best place be to do this ?
/etc/rc.local ?