From owner-freebsd-stable@FreeBSD.ORG Sat Mar 17 10:57:31 2007 Return-Path: X-Original-To: freebsd-stable@freebsd.org Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 12C3016A406 for ; Sat, 17 Mar 2007 10:57:31 +0000 (UTC) (envelope-from joao@matik.com.br) Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14]) by mx1.freebsd.org (Postfix) with ESMTP id 90FCD13C44C for ; Sat, 17 Mar 2007 10:57:30 +0000 (UTC) (envelope-from joao@matik.com.br) Received: from anc (nb-h.matik.com.br [200.152.88.34] (may be forged)) by msrv.matik.com.br (8.13.8/8.13.1) with ESMTP id l2HAvSdr065089 for ; Sat, 17 Mar 2007 07:57:28 -0300 (BRT) (envelope-from joao@matik.com.br) From: JoaoBR Organization: Infomatik To: freebsd-stable@freebsd.org Date: Sat, 17 Mar 2007 07:57:18 -0300 User-Agent: KMail/1.9.4 References: <200703170658.l2H6wjTD098761@drugs.dv.isc.org> In-Reply-To: <200703170658.l2H6wjTD098761@drugs.dv.isc.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200703170757.18939.joao@matik.com.br> X-Virus-Scanned: ClamAV version 0.88.4, clamav-milter version 0.88.4 on msrv.matik.com.br X-Virus-Status: Clean Subject: Re: rc.order wrong (ipfw) X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Mar 2007 10:57:31 -0000 On Saturday 17 March 2007 03:58, Mark Andrews wrote: > > > nothing goes to this machine because by default everything is blocked > > > until > > > > > > you permit it > > > > You're absolutely correct, however your original post seems to have > > taken many of us by surprise, causing some of us (at least me!) to > > assume that you've changed the default method to allow. I'm obviously > > misunderstanding, so I apologise for that, but I hope you can see the > > reasoning behind my comments with what I knew at the time. :) > > ipfw needs to be before networking or router discovery > fails for IPv6. > > http://www.freebsd.org/cgi/query-pr.cgi?pr=3Dconf/108589 > as default any network connection will fail so long as you do not permit it If rtsol fails or is called to early it is an rtsol problem and not an ipfw= =20 problem I guess as another example, what if you set a ifconfig_nic0=3D"inet hostname" inste= ad of=20 IP address and this hostname is not in /etc/hosts and ipfw is still not up= =20 and named is far away to start, then, according to your idea we need to sta= rt=20 named and ipfw before netif? =2D-=20 Jo=E3o A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura. Service fornecido pelo Datacenter Matik https://datacenter.matik.com.br