About this blog…

I am employed by Netnod as head of engineering, research and development and am among other things chair of the Security and Stability Advisory Committee at ICANN. You can find CV and photos of me at this page.

As I wear so many hats, I find it being necessary to somewhere express my personal view on things. This is the location where that happens. Postings on this blog, or at Facebook, Twitter etc, falls under this policy.

The views expressed on this post are mine and do not necessarily reflect the views of Netnod or any other of the organisations I have connections to.

Tip from the coach about ipfw

Do not load the kernel module (remotely) without also adding some rules. This because a default rule always exists which might have some impact on your remote connection…

65535 deny all from any to any

If you really have to load the module remotely, do instead

kldload ipfw && ipfw add 32000 allow all from any to any

Much better…

Comments are closed.