From owner-freebsd-questions Fri Feb 21 10:34:41 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7780B37B401 for ; Fri, 21 Feb 2003 10:34:39 -0800 (PST) Received: from tina.la3sg.net (la3sg.net [217.13.29.172]) by mx1.FreeBSD.org (Postfix) with ESMTP id AF38243FCB for ; Fri, 21 Feb 2003 10:34:38 -0800 (PST) (envelope-from tina@la3sg.net) Received: by tina.la3sg.net (Postfix, from userid 1001) id B9CF514A58; Fri, 21 Feb 2003 19:34:39 +0100 (CET) Date: Fri, 21 Feb 2003 19:34:39 +0100 From: Kjell Midtseter To: Jim Xochellis Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Problems with in the ipf setup in an FreeBSD 4.7 router Message-ID: <20030221183439.GC1349@tina.la3sg.net> Reply-To: junkmail@sensewave.com References: <3E566B12.5DEE5B21@escape.gr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3E566B12.5DEE5B21@escape.gr> User-Agent: Mutt/1.4i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Friday, 21 February 2003 at 20:08:17 +0200, Jim Xochellis wrote: > Hi List, > > I have a FreeBSD 4.7(i386) Release router I am trying to make it run > with the ipf firewall on. > > I have compiled and installed a new kernel with ipf support and then I > put the following lines inside my rc.conf file: > > ... > ipfilter_enable="YES" > ipfilter_program="/sbin/ipf -Fa -f" Try removing the above line > ipfilter_rules="/etc/ipf.rules" > ipfilter_flags="" > ... > > The problem is that, when I boot, ipf does not work. It seems like is > not using the rules. > > If I enter "ipf -Fa -f /etc/ipf.rules" from the command line, then it > starts working as expected. > > What do I have to do to make ipf start automatically on boot? Any tips > or pointers to manuals will be greatly appreciated. > > TIA, > > Jim Xochellis > Escape Information Services > > > P.S.Note that I am running with security level set to 2. (I also tried > running with security level set to 1 and -1 without any luck.) > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message