From owner-freebsd-questions@FreeBSD.ORG  Thu Jun  1 22:09:24 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E82B216C3BD
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Jun 2006 22:09:24 +0000 (UTC)
	(envelope-from drew@mykitchentable.net)
Received: from relay01.roc.ny.frontiernet.net (relay01.roc.ny.frontiernet.net
	[66.133.182.164])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8DFF443D45
	for <freebsd-questions@freebsd.org>;
	Thu,  1 Jun 2006 22:09:24 +0000 (GMT)
	(envelope-from drew@mykitchentable.net)
Received: from blacklamb.mykitchentable.net
	(67-51-113-117.dsl1.elk.ca.frontiernet.net [67.51.113.117])
	by relay01.roc.ny.frontiernet.net (Postfix) with ESMTP id 8533136429D; 
	Thu,  1 Jun 2006 22:09:22 +0000 (UTC)
Received: from [192.168.25.6] (unknown [192.168.25.6])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by blacklamb.mykitchentable.net (Postfix) with ESMTP id 6308F1648E6;
	Thu,  1 Jun 2006 15:09:21 -0700 (PDT)
Message-ID: <447F6590.9070000@mykitchentable.net>
Date: Thu, 01 Jun 2006 15:09:20 -0700
From: Drew Tomlinson <drew@mykitchentable.net>
User-Agent: Thunderbird 1.5.0.2 (Windows/20060308)
MIME-Version: 1.0
To: Toni Schmidbauer <toni@stderror.at>
References: <447C6CF9.4070201@mykitchentable.net>
	<86u07731hq.wl%toni@stderror.at>
In-Reply-To: <86u07731hq.wl%toni@stderror.at>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new-2.3.2 (20050629) at
	filter11.roc.ny.frontiernet.net
Cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: ipfw Kernel Module - Default to Accept?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jun 2006 22:09:40 -0000

On 5/30/2006 9:45 AM Toni Schmidbauer wrote:
> At Tue, 30 May 2006 09:04:09 -0700,
> Drew Tomlinson wrote:
>   
>> I'm using FBSD 6.1.  When using the ipfw kernel module, is it possible
>> to get ipfw loaded in a "default to accept" mode?  I've seen the
>> kernel option to enable this when compiling statically but nothing
>> specific to the kernel module.  Maybe there's a way to compile the
>> kernel module with some entry in /etc/make.conf?  I've Googled but
>> have not been able to turn up anything.
>>     
>
> you can recompile the module, uncomment the line 
>
> #CFLAGS+= -DIPFIREWALL_DEFAULT_TO_ACCEPT
>
> in /usr/src/sys/modules/ipfw/Makefile. next call make in the same
> directory and copy the compiled module to /boot/kernel. i've done that
> in the past, works like a charm.
>   

Thank you.  I'll try it.

Drew

-- 
Be a Great Magician!
Visit The Alchemist's Warehouse

http://www.alchemistswarehouse.com