More about recent IPFW changes
Andreas Kohn
andreas.kohn at gmx.net
Thu Aug 19 09:56:40 PDT 2004
Hi,
On Thu, 2004-08-19 at 18:33, Ruslan Ermilov wrote:
> On Thu, Aug 19, 2004 at 06:16:53PM +0200, Andreas Kohn wrote:
> > On Thu, 2004-08-19 at 17:24, Ruslan Ermilov wrote:
> > > Andre,
> > >
> > > There was also an API change: net.inet.ip.fw.enable
> > > is no longer available, the removal wasn't mentioned
> > > in your HEADS UP nor in the commit log, and this now
> > > breaks /etc/rc.d/ipfw. What's the replacement for
> > > this sysctl, to disable firewall in run-time?
> >
> > I replaced these two lines in rc.d/ipfw with ipfw (enable|disable)
> > firewall.
> >
> The "ipfw enable|disable firewall" uses the same non-existing
> sysctl:
>
> } else if (strncmp(*av, "firewall", strlen(*av)) == 0) {
> sysctlbyname("net.inet.ip.fw.enable", NULL, 0,
> &which, sizeof(which));
>
>
:/
True.
I didn't check the code, I needed a working quick solution because my
network access was dead after the update. Ipfw enable didn't output any
messages, so I thought it would be okay.
sorry for the noise,
Andreas.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: This is a digitally signed message part
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20040819/552d16a7/attachment.bin
More information about the freebsd-current
mailing list