ipfw.conf is not read

Armand Passelac apasselac at free.fr
Fri Sep 19 04:09:15 PDT 2003


[---- On Fri, 19 Sep, 2003 at 11:52, Michael L. Hostbaek wrote: ----]
> Antoine Jacoutot (ajacoutot) writes:
> > 
> > firewall_enables="YES"
> > firewall_script="/etc/ipfw.conf"
> > firewall_logging="YES"
> > 
> 
> try:
> 
> firewall_enable="YES"
> firewall_type="/etc/ipfw.conf"
> 
> I don't know why, but that works for me.
> 
> /mich
>

YES your problem is the *s* at the and of the firewall_enable line ;-)
So the correct syntax is :
firewall_enable="YES"
firewall_script="/etc/ipfw.conf"
# To avoid the display of rules during loading :
firewall_quiet="YES"
# To display the log (for log rules) in /var/log/security
firewall_logging="YES"

In your case, the *firewall_type* seems to not be necessary unless you use the default rc.firewall syntax.

Moreover, according to me, a chmod 600 /etc/ipfw.conf seems to be better ;-)

 
> 
> -- 
> Best Regards,
> 	Michael L. Hostbaek 
> 	FreeBSD Committer - FreeBSD: The power to serve
> 	mich at FreeBSD.org - http://www.FreeBSD.org
> 
> 	*/ PGP-key available upon request /*
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
[---- End of original mail from Michael L. Hostbaek ----]

-- 
"No guts No glory"

=] PASSELAC Armand [=
     (  @ @ )   
Ingenieur Systemes-Reseaux & Securite
ORBYTES INGENIERIE


More information about the freebsd-questions mailing list