Firewall enabling confusion.
Ion-Mihai Tetcu
itetcu at apropo.ro
Fri Feb 27 13:23:57 PST 2004
On Fri, 27 Feb 2004 16:14:26 -0500
"Shaun T. Erickson" <ste at ste-land.com> wrote:
> Ion-Mihai Tetcu wrote:
>
> > hint:
> > sysctl -a | grep ip.fw
> > for logging do:
> > sysctl -w net.inet.ip.fw.verbose: 1
> > sysctl -w net.inet.ip.fw.verbose_limit: 5
>
> Ah.
>
> > see also man ipfw, it will answer your questions.
>
> I'm still wading through it - it's quite a long read. I'll finish before
> asking anything else. ;)
>
> > AFAIK recompile with IPFW_DEFAUL_TO_ACCEPT, but it would be a bad thing.
>
> I don't disagree - I just wanted to know how. It helps me to understand
> the system better. ;)
;) on ipfw2 you can suspend the last automatic deny all rule, see the man page.
--
IOnut
Unregistered ;) FreeBSD user
More information about the freebsd-questions
mailing list