problem with IPFILTER
Brooks Davis
brooks at one-eyed-alien.net
Wed Dec 22 11:16:07 PST 2004
On Wed, Dec 22, 2004 at 05:46:45PM +0100, Dott. Surricani wrote:
> Hello everybody.
>
> I've succesfully set up an Inclusive Firewall for my small Lan, how
> explained in Chapter 24 of the Handbook,
> with IPFILTER and ipnat (Either with kld modules).
> I've included in rc.conf the lines neeeded and i've written custom
> ipf.rules and ipnat.rules...
>
> It's super, and work great, but I've got a problem/question:
>
> each time I restart the server the rules are cleared and It leave all
> packets enter and exit
> an I have to type in the shell
>
> ipf -Fa -f /etc/ipf.rules and
> ipnat -CF -f /etc/ipnat.rules
>
> It's very boring....
>
> What I can do to automate this task?
Search for ipfilter and ipnat in /etc/defaults/rc.conf to find the
appropriate variables to set in your /etc/rc.conf.
-- Brooks
--
Any statement of the form "X is the one, true Y" is FALSE.
PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ipfw/attachments/20041222/adbfd1aa/attachment.bin
More information about the freebsd-ipfw
mailing list