loading ipfw at boot time
Joe
fbsd8 at a1poweruser.com
Sun Apr 28 11:54:06 UTC 2013
Andreas Mueller wrote:
> Hello there.
>
>> I know ipfw can be loaded at boot time by adding statements to
>> /boot/loader.conf.
>>
>> Problem is I dont know what the ipfw module names are.
>>
>> How do I find the ipfw names to use?
>
> Not using ipfw by myself, but according to the handbook, the modules are
> loaded automatically, when editing rc.conf to load the firewall:
>
> Quote:
> ------------------------------------------------------------------------
> IPFW is included in the basic FreeBSD install as a run time loadable
> module. The system will dynamically load the kernel module when rc.conf
> contains the statement firewall_enable="YES". After rebooting the
> system, the following white highlighted message is displayed on the
> screen as part of the boot process:
>
> ipfw2 initialized, divert disabled, rule-based forwarding disabled,
> default to deny, logging disabled
> ------------------------------------------------------------------------
> Source: http://www.freebsd.org/doc/handbook/firewalls-ipfw.html
>
> Greets,
> Andreas
>
That did not answer my question.
What you wrote ONLY applies to the HOST.
It has NO effect for a vimage jail.
If I use ipfw on the host, then yes the ipfw modules are dynamically
loaded into the kernel at boot time and the vimage jail can use them.
But I use ipfilter on my host which means I have to recompile the kernel
with ipfw hard coded in. Should be able to load the ipfw modules at boot
time using loader.conf and still use ipfilter on the host dynamically.
So back to the original question.
How do I find the ipfw module names to use in the loader.conf file?
This is a loader.conf question not a ipfw question.
Thanks
More information about the freebsd-questions
mailing list