More about recent IPFW changes

Ruslan Ermilov ru at freebsd.org
Thu Aug 19 09:33:12 PDT 2004


On Thu, Aug 19, 2004 at 06:16:53PM +0200, Andreas Kohn wrote:
> On Thu, 2004-08-19 at 17:24, Ruslan Ermilov wrote:
> > Andre,
> > 
> > There was also an API change: net.inet.ip.fw.enable
> > is no longer available, the removal wasn't mentioned
> > in your HEADS UP nor in the commit log, and this now
> > breaks /etc/rc.d/ipfw.  What's the replacement for
> > this sysctl, to disable firewall in run-time?
> 
> I replaced these two lines in rc.d/ipfw with ipfw (enable|disable)
> firewall.
> 
The "ipfw enable|disable firewall" uses the same non-existing
sysctl:

        } else if (strncmp(*av, "firewall", strlen(*av)) == 0) {
                sysctlbyname("net.inet.ip.fw.enable", NULL, 0,
                    &which, sizeof(which));


Cheers,
-- 
Ruslan Ermilov
ru at FreeBSD.org
FreeBSD committer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-current/attachments/20040819/ea9a61a9/attachment.bin


More information about the freebsd-current mailing list