From owner-freebsd-security  Mon Feb 26  6:46:25 2001
Delivered-To: freebsd-security@freebsd.org
Received: from ringworld.nanolink.com (sentinel.office1.bg [195.24.48.182])
	by hub.freebsd.org (Postfix) with SMTP id 62BF137B4EC
	for <freebsd-security@FreeBSD.ORG>; Mon, 26 Feb 2001 06:46:01 -0800 (PST)
	(envelope-from roam@orbitel.bg)
Received: (qmail 8956 invoked by uid 1000); 26 Feb 2001 14:42:24 -0000
Date: Mon, 26 Feb 2001 16:42:24 +0200
From: Peter Pentchev <roam@orbitel.bg>
To: Adam Laurie <adam@algroup.co.uk>
Cc: Gerhard Sittig <Gerhard.Sittig@gmx.net>,
	freebsd-security@FreeBSD.ORG
Subject: Re: /etc/rc.firewall fixes
Message-ID: <20010226164224.A435@ringworld.oblivion.bg>
Mail-Followup-To: Adam Laurie <adam@algroup.co.uk>,
	Gerhard Sittig <Gerhard.Sittig@gmx.net>, freebsd-security@FreeBSD.ORG
References: <3A93A9CC.BC1D39FB@algroup.co.uk> <3A93C2FB.3E160997@ocsinternet.com> <3A94AE05.965BC5E4@gorean.org> <3A9526AA.19D00D47@ocsinternet.com> <3A954152.C7887C3@gor.com> <3A97A4E6.C53ECF27@algroup.co.uk> <3A982224.893F76AF@gorean.org> <5.0.2.1.0.20010225114958.00b10858@pop3.demon.co.uk> <20010225154736.O20830@speedy.gsinet> <3A9A2AE7.DDD4E33B@algroup.co.uk>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <3A9A2AE7.DDD4E33B@algroup.co.uk>; from adam@algroup.co.uk on Mon, Feb 26, 2001 at 10:07:35AM +0000
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Mon, Feb 26, 2001 at 10:07:35AM +0000, Adam Laurie wrote:
> Gerhard Sittig wrote:
> > 
> > On Sun, Feb 25, 2001 at 12:13 +0000, Marc Rogers wrote:
> > >
> > > I would like to see configuration code for ipfw  AND ipfilter
> > > placed into rc.conf (and thus ipnat as well as natd). Anyway I
> > > wont hold my breath for a commit.
> > 
> > Excuse me.  What exactly do you mean by these words?  What's
> > missing?  ipfw has been enabled there / gotten parameters from
> > for quite some time, ipf got its hooks before 4.2-RELEASE.  Plus
> > this all only moved to an early stage in the boot process what
> > you could accomplish by means of /usr/local/etc/rc.d/ipf.sh
> > before.
> 
>   uname -v
>   FreeBSD 4.2-RELEASE #1: Mon Feb 19 14:46:17 GMT 2001
> 
>   from /etc/rc.firewall:
> 
>         # set these to your network and netmask and ip
>         net="192.0.2.0"
>         mask="255.255.255.0"
>         ip="192.0.2.1"
> 
> update your rc.firewall and you lose your network setting.

Uh.. isn't this what mergemaster is for?

G'luck,
Peter

-- 
This sentence was in the past tense.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message