Skip to main content
Ask Different

Questions tagged [ipfw]

Ask Question

IP packet filter (firewall) included in Mac OS X from 10.0-10.9.

23 questions
Newest Active Bountied Unanswered
Filter by
Sorted by
Tagged with
1 vote
2 answers
4k views

How to block everything except my connection to the VPN?

I'm trying to make Murus block everything, except my connection to the VPN server. I don't want my Mac to make any outbound calls to any ports unless via the VPN connection. I'm trying to add a rule ...
yegor256's user avatar
yegor256
  • 121
5 votes
1 answer
509 views

sharing internet/vpn with ipfw, can't access google.com over https

I am sharing my internet connection / IKEv2 VPN connection over pf via Murus static NAT. My network architecture is as follows: internet modem -> wired router (serving 192.168.1.1/24) -> Mac ...
Walrus the Cat's user avatar
Walrus the Cat
  • 988
2 votes
0 answers
185 views

How to install a DHCP server (wireless router or access point) downstream of Murus Static NAT internet sharing?

I am currently sharing my Mac's ethernet connection via Murus static NAT. Upstream I only have a cable modem, so the IP address of Mac #1 is my ISP-provided external IP. I am running an ethernet USB ...
Walrus the Cat's user avatar
Walrus the Cat
  • 988
1 vote
1 answer
823 views

Automating pfctl to block incoming connections and IPs

I get a lot of unwanted traffic from Chinese IP addresses. I'm using an old Mac with OS X 10.7.5 (my Mac is ancient, so I cannot update further), so I imagine it's more vulnerable than a newer Mac ...
jvriesem's user avatar
jvriesem
  • 784
1 vote
2 answers
500 views

ipfw ruleset limit

We are using ipfw in OSX 10.6 Server, 10.7 Server... all working fine until we add too many rules, I think. ipfw will still work, but only process up to certain number of rules. Currently wc -l /...
charleslcso's user avatar
charleslcso
  • 109
3 votes
1 answer
5k views

Corresponding ipfw rules in MacOS for this Iptables rules

I need to give Internet access to a VM under Vmware fusion 7 in Host-Only mode. I know how to do it in Linux, with the following IPtables rules: sysctl -w net.ipv4.ip_forward=1 iptables -A FORWARD -o ...
Captain Nemo's user avatar
Captain Nemo
  • 33
2 votes
1 answer
16k views

How can I open a port (not application) in the macOS Sierra firewall?

I am trying to follow up on this thread and to update it for macOS Sierra (and probably all versions since Yosemite). In that thread, a way to open a single port in the OS's firewall was suggested: ...
user avatar
user213226
4 votes
1 answer
3k views

how to throttle Internet bandwidth? [duplicate]

In previous releases of OS X, there was a command called ipfw, that permitted throttling of network bandwidth, which is useful for running some kinds of tests on software. It appears that as of ...
moop's user avatar
moop
  • 111
2 votes
1 answer
2k views

Port forwarding Yosemite

I have a server running on my iMac (port 8000) and I want my iPad to be able to visit it through the local network so I set this rule using pf anchors (hence ipfw is gone). It doesn't work, what am I ...
user2298943's user avatar
user2298943
  • 121
2 votes
1 answer
580 views

Is there a way to do per-application rules in pfctl/alf?

I'd like to implement a mitmproxy for a single application on my mac. Pfctl doesn't natively have (from what I can see) support to set rules based on the application source/dest of the packets, but ...
PerilousApricot's user avatar
PerilousApricot
  • 305
1 vote
1 answer
596 views

Forwarding a single port from one network adapter to another?

I have a Parallels Desktop virtual machine with Host-Only networking. I want to set up Remote Desktop on Windows (port 3389) while not exposing any other part of Windows to the external network. ...
Yifan's user avatar
Yifan
  • 111
0 votes
1 answer
3k views

How to block and unblock the media ports in MAC OSX 10.9? [duplicate]

I am working on a test project that requires me to block all media ports on my Mac OS X 10.9. The instructions I'be veen given are "Chinese" to me :-) I have no idea how and where to start, let ...
Syl Mulder's user avatar
Syl Mulder
  • 15
11 votes
3 answers
23k views

Which setting in osx could block "ping localhost"?

How can I detect which setting in the OS X could block ping localhost? IPFW, LittleSnitch no such rules? Update 1: > cat /etc/hosts 127.0.0.1 localhost 255.255.255.255 broadcast
static's user avatar
static
  • 655
3 votes
3 answers
6k views

Firewall on iPhone/iOS (ipfw or pf)

I want to run ipfw or pf on my iPhone -- or the equivalent. Seems simple, but I can't find anything that works. Device is jailbroken, looked very carefully through Cydia, and even through some of ...
peter.r's user avatar
peter.r
  • 33
8 votes
1 answer
14k views

Mac os x ipfw forward from ip:port to ip:port

I want when on my local machine redirect from 192.168.64.88 port 80 to localhost port 9790. How can I do it with ipfw rule?
Eazy's user avatar
Eazy
  • 261
2 votes
1 answer
830 views

Configure ipfw to filter by ip range

I am a Linux user and very new to OSX. I have an OSX 10.7.5 "Lion" server that I am configuring as a webserver. I only have shell access. I am tryin to configure the firewall, but ipfw is quite ...
Jeroen Ooms's user avatar
Jeroen Ooms
  • 693
5 votes
2 answers
3k views

How does Application Level Firewall work?

I'm a bit confused about OS X Mountain Lion's Application Level Firewall. I have enabled ALF (Application Level Firewall) in Settings -> Secuity & Privacy -> Firewall and have some rules for some ...
mixel's user avatar
mixel
  • 329
1 vote
1 answer
791 views

IPFW: IP blocked, but still can get in

I am using Fail2Ban to dynamically add rules to IPFW. The offending IP addresses are added into IPFW, but for some unknown reasons they can still get through to Apache and make requests. Is it ...
charleslcso's user avatar
charleslcso
  • 109
4 votes
1 answer
6k views

Is ipfw available in Mountain Lion?

Is ipfw available in Mountain Lion? The reason for asking is that they introduced pf in Lion, but kept ipfw, however there is a chance that ipfw would eventually be removed. I found this: Can I use ...
lupincho's user avatar
lupincho
  • 1,478
0 votes
1 answer
1k views

How to create OS X Server Admin firewall rules using ip address groups by command line?

The (Lion) Server Admin.app has a nice ability to apply firewall rules to ip address groups without having to edit ipfw config files. But having to enter large and long lists of IP addresses using ...
Pro Backup's user avatar
Pro Backup
  • 4,006
1 vote
0 answers
872 views

How do i use ipfw to allow some sites and block all sites

I am new to ipfw, my requirement is like that, once application launches,i need to read the certain application parameter and depending upon them, i should be able to allow some site and block others, ...
Rohan Bhatia's user avatar
Rohan Bhatia
  • 11
4 votes
4 answers
8k views

How do I use ipfw to allow LAN access but deny Internet access?

How can I use ipfw (or another tool, if one is available) to allow unlimited access between computers on my LAN, but not allow access to the Internet? (The IPs on my local LAN are 192.168.0.xxx)
TJ Luoma's user avatar
TJ Luoma
  • 20.9k
2 votes
1 answer
3k views

Is ipfw the same as pf in FreeBSD?

I'm wondering if references referring to pf in FreeBSD are applicable to ipfw in Mac OS X Snow Leopard? I'd like to know to see if it's worthwhile to consult books on pf for use with Mac OS.
Scott Davies's user avatar
Scott Davies
  • 389