firewall settings for ppoe

yogi

no fate but what we make
Messages
267
ISP
pacenet
This post is for those who have ISP's using the ppp over ethernet protocol for internet connection. I was customizing the firewall (sygate), and I could not pinpoint the exact level of blocking for the range of ISP addresses plus other computers on my network. I use Pacenet, and I tried to set access to just allow dns and icmp packets to go through. But this resulted in failed connections...In the end I had to allow for tcp, udp and icmp access to the entire range for the ISP address block , plus the whole block of IANA network addresses (192.168.xxx.xxx, 169.254.xxx, etc). This is the only way I could get the firewall to let the connection go through. I would still like to go further and just allow the selective dns and icmp queries only...so does anyone know more on this? thanks!:)
 

aniketvb

Linuxguy
Messages
465
ISP
Cox Internet
Instead of using the "blacklist" policy for incoming and outgoing connection both , use blacklist policy for out bound connections and white list policy for inbound connection.IE you block all incoming connections from all address, and allow a select group of address.
 

yogi

no fate but what we make
Messages
267
ISP
pacenet
I didnt quite understand, because I think pacenet will disconnect me if it doesnt get a reply back from its 'pinging'. I also have a problem with irc not working...if I disable the firewall its ok, but when I enable the firewall - it gives identd ok, but says host name not found and stops. :(
 


Top