Enable ipfw without rebooting

scuba at centroin.com.br scuba at centroin.com.br
Thu Sep 29 09:11:32 PDT 2005


Hi,

	Loading the kernel module "kldload ipfw", did the job.
	But nothing using rc's files helps to prevent being locked with a
"deny all" default rule, since those files are not executed on module
load.
	I had to use:

	kldload ipfw ; sh /etc/rc.firewall
	or
	kldload ipfw ; ipfw add 1 pass all from any to any

Thank you for the help.

- Marcelo Souza

On Tue, 27 Sep 2005, Oliver Fromme wrote:

|scuba at centroin.com.br wrote:
| > On Fri, 23 Sep 2005, vladone wrote:
| > |U can use:
| > |ipfw enable or ipfw disable command (man ipfw)
| >
| >         It doesn't work. Do nothing.
| >
| > |or from sysctl:
| > |sysctl net.inet.ip.fw.enable=0 (to disable)
| >
| >         This generate a error:
| >
| > ‰sysctl: unknown id 'net.inet.ip.fw.enable'
|
|Do you have IPFW code in your kernel?  (Either statically
|compiled via kernel config, or dynamically loaded as KLD)
|
|If you don't, then it doesn't work, of course.
|
|Try loading the IPFW KLD ("kldload ipfw").
|
|Best regards
|   Oliver
|
|--
|Oliver Fromme,  secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing
|Dienstleistungen mit Schwerpunkt FreeBSD: http://www.secnetix.de/bsd
|Any opinions expressed in this message may be personal to the author
|and may not necessarily reflect the opinions of secnetix in any way.
|
|'Instead of asking why a piece of software is using "1970s technology,"
|start asking why software is ignoring 30 years of accumulated wisdom.'
|_______________________________________________
|freebsd-ipfw at freebsd.org mailing list
|http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw
|To unsubscribe, send any mail to "freebsd-ipfw-unsubscribe at freebsd.org"
|


- Marcelo




More information about the freebsd-ipfw mailing list