ipfw firewall_type 'OPEN'
Eygene Ryabinkin
rea-fbsd at codelabs.ru
Mon May 18 13:15:17 UTC 2009
Sebastian,
Mon, May 18, 2009 at 02:04:50PM +0200, Sebastian Mellmann wrote:
> 00010 allow ip from any to any via lo0
> 65000 allow ip from any to any
> 65535 deny ip from any to any
>
>
> The problem is, if I execute my own ipfw script and flush the rules via
> 'ipfw -q -f flush'
> and
> 'ipfw -q -f pipe flush'
> I'm loosing my ssh connection to that machine.
> Is there any chance to remove the rule 65535 or change it to allow
> instead of deny?
Yes, insert
-----
options IPFIREWALL_DEFAULT_TO_ACCEPT
-----
to your kernel configuration, rebuild, install and use new kernel.
--
Eygene
_ ___ _.--. #
\`.|\..----...-'` `-._.-'_.-'` # Remember that it is hard
/ ' ` , __.--' # to read the on-line manual
)/' _/ \ `-_, / # while single-stepping the kernel.
`-'" `"\_ ,_.-;_.-\_ ', fsc/as #
_.-'_./ {_.' ; / # -- FreeBSD Developers handbook
{_.-``-' {_/ #
More information about the freebsd-net
mailing list