From owner-freebsd-stable Tue Sep 14 12:45:36 1999 Delivered-To: freebsd-stable@freebsd.org Received: from quackerjack.cc.vt.edu (quackerjack.cc.vt.edu [198.82.160.250]) by hub.freebsd.org (Postfix) with ESMTP id C5804155E5 for ; Tue, 14 Sep 1999 12:43:53 -0700 (PDT) (envelope-from jobaldwi@vt.edu) Received: from mailrelay.vt.edu (gkar.cc.vt.edu [128.173.16.40]) by quackerjack.cc.vt.edu (8.8.8/8.8.8) with ESMTP id PAA17819; Tue, 14 Sep 1999 15:43:50 -0400 (EDT) Received: from john.baldwin.cx (jobaldwi.campus.vt.edu) by gkar.cc.vt.edu (Sun Internet Mail Server sims.3.5.1999.05.24.18.28.p7) with ESMTP id <0FI20048ZET16P@gkar.cc.vt.edu>; Tue, 14 Sep 1999 15:43:49 -0400 (EDT) Date: Tue, 14 Sep 1999 15:43:35 -0400 (EDT) From: John Baldwin Subject: Re: New rc.conf entry question. In-reply-to: <00b401befec9$2ab773e0$5214010a@swlct.sthames.nhs.uk> To: Greg Quinlan Cc: FreeBSD-stable@freebsd.org Message-id: <0FI200492ET16P@gkar.cc.vt.edu> MIME-version: 1.0 X-Mailer: XFMail 1.3 [p0] on FreeBSD Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 8bit X-Priority: 3 (Normal) Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 14-Sep-99 Greg Quinlan wrote: > I am just talking about changing the location of the firewall > configuration > file (rc.firewall), not "sucking it" in. Go look at the existing /etc/rc.firewall. It already does this! :) If you specify a firewall type that is not one of client, server, etc., it assumes the type is a file of ipfw commands that should be passed to ipfw. Look at the bottom of the rc.firewall, specifically: ----8<---- elif [ "${firewall_type}" != "UNKNOWN" -a -r "${firewall_type}" ]; then $fwcmd ${firewall_type} fi ----8<---- For instance, I put all of my ipfw commands on my router in /etc/rc.firewall.local and have the following in /etc/rc.conf: ----8<---- firewall_enable="YES" firewall_type="/etc/rc.firewall.local" firewall_quiet="NO" ----8<---- --- John Baldwin -- http://www.cslab.vt.edu/~jobaldwi/ PGP Key: http://www.cslab.vt.edu/~jobaldwi/pgpkey.asc "Power Users Use the Power to Serve!" - http://www.FreeBSD.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message