Shell script help
Norberto Meijome
freebsd at meijome.net
Wed Jun 29 04:35:00 GMT 2005
Kevin Kinsey wrote:
>
> =================
>
> # Rule number variable
> RuleNum=100
>
> #################################
> # this function increments $RulNum var by 100... #
> #################################
>
> inc () {
> RuleNum=$(expr $1 "+" 100)
> }
>
>
> ##################
> # LET'S GET STARTED #
> ##################
>
> # flush the ruleset ...
> /sbin/ipfw -q flush
>
> # set up the loopback ...
> $FW $RuleNum allow ip from any to any via $loopback
> inc $RuleNum
>
> # deny localhost traffic on other interfaces
> $FW $RuleNum deny ip from 127.0.0.0/8 to any
> inc $RuleNum
> $FW $RuleNum deny ip from any to 127.0.0.0/8
> inc $RuleNum
>
> ==================
nice use...but what's the point ? ipfw assigns rule #s automatically.
I agree that you may want to hardcode your rule #s (0-100 for localhost,
200 - 5000 for LAN, etc) but using your inc() process defeats the
purpose of this.
just my $0.02
Beto
More information about the freebsd-questions
mailing list