conf/78762: [ipfw] [patch] /etc/rc.d/ipfw should excecute $fire
wall_script not read it
Mike Makonnen
mtm at FreeBSD.Org
Tue Apr 3 10:23:10 UTC 2007
On Mon, Apr 02, 2007 at 01:02:51PM -0300, AT Matik wrote:
> On Monday 02 April 2007 12:40, Mike Makonnen wrote:
> > Synopsis: [ipfw] [patch] /etc/rc.d/ipfw should excecute $firewall_script
> > not read it
> >
> > State-Changed-From-To: open->patched
> > State-Changed-By: mtm
> > State-Changed-When: Mon Apr 2 15:40:10 UTC 2007
> > State-Changed-Why:
> > Patched in -CURRENT.
> > MFC-After: 2 weeks
> >
> > http://www.freebsd.org/cgi/query-pr.cgi?pr=78762
>
>
> btw, is this
>
> ${SYSCTL_W} net.inet.ip.fw.enable=1
>
> which comes after loading firewall_script in /etc/rc.d/ipfw is beeing
> corrected also? Probably better setting this in ipfw_precmd ()
I'm not sure I understand. Are you saying the firewall should be enabled
in a precmd() subroutine? If so, I don't think that's a good idea. The
firewall should be enabled only after the firewall script has been
*successfully* loaded.
Cheers.
--
Mike Makonnen | GPG-KEY: http://people.freebsd.org/~mtm/mtm.asc
mmakonnen @ gmail.com | AC7B 5672 2D11 F4D0 EBF8 5279 5359 2B82 7CD4 1F55
mtm @ FreeBSD.Org | FreeBSD - http://www.freebsd.org
More information about the freebsd-ipfw
mailing list