configuring ipfw on mac os x 10.3: revisited.


It has been a few months since I first posted about configuring ipfw on Mac OS X. Since then I have had a few random issues with startup that may have been related to my firewall settings, but I was never able to really hone in on the exact problem (because the problem was not constant, and the logs were not useful). After MacDevCenter recently posted an article on configuring ipfw I took a few minutes to see how they had everything configured and set up, then tweaked my firewall. To my pleasure, I have my new configuration running on my computers and have had no problems.
What I changed:

  • ipfw.conf: add 02000 allow ip from any to any via lo0 to add 02000 allow ip from any to any via lo*
  • /Library/StartupItems/ipfw/ipfw: my new file.
  • /etc/hostconfig: Add: FIREWALL=-YES-
  • /Library/StartupItems/ipfw/StartupParameters.plist: my new file
  • new syntax in the ipfw.conf (rules are still the same, ecept for my noted change above): my new file

Why did I change my files? I figured O’Reilly knew what they were talking about, and I liked their code better than what I orginally found. Now I am confident in my setup and can recommend it for everyone who is interested in customizing their firewall rules more than Apple allows with their GUI.

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.


Amazing Photographs

One thing led to another, yada yada yada, and I ended up at this amazing web site which has spectacular photographs. There is something about photographing the simple things in life that I absolutely love…I am not sure how to explain it, but this photographer captures some wonderful emotion with his focus on simple (or […]


Why I Love TiVo

Sure the little noises are cool, and fast forwarding the commercials has been a time saver, but I have to hope people are taking advantage of the Home Media Option, and TiVo Desktop.