I am starting to learn FreeBSD and I am not sure about the firewall rules I want to add. This is the situation. I am the only one who has access to the server. I want full access, block as much as possible and keep it as simple as possible. The only thing visitors need is www access and sending mail. This is what I had in mind (fake IP's) :
00001 allow all from 12.345.67.890 to any #my IP 01000 deny all from 345.44.333.67 to any #first block for abuse 65533 allow udp from 444.543.54.67 53 to 444.543.54.69 # DNS-IP's to allow DNS queries 65534 allow tcp from any to any 25, 80 #visiting www and sending mail visitors 65535 deny all from any to any
Will this do or am I blocking too much? Can I block more?
