From owner-freebsd-security Mon Oct 9 10:18:13 2000 Delivered-To: freebsd-security@freebsd.org Received: from ogyo.pointer-software.com (ogyo.pointer-software.com [210.164.96.147]) by hub.freebsd.org (Postfix) with ESMTP id 972D037B66C for ; Mon, 9 Oct 2000 10:18:09 -0700 (PDT) Received: from long.near.this (long.near.this [10.0.172.9]) by ogyo.pointer-software.com (8.11.0.Beta3/8.11.0.Beta3) with ESMTP id e99HI2f07206 for ; Tue, 10 Oct 2000 02:18:02 +0900 (JST) Message-Id: <200010091718.e99HI2f07206@ogyo.pointer-software.com> Date: Tue, 10 Oct 2000 02:17:08 +0900 From: horio shoichi Organization: pointer software X-Mailer: Mozilla 4.7 [en] (X11; U; Linux 2.0.34 i686) X-Accept-Language: en, ja MIME-Version: 1.0 To: "freebsd-security@FreeBSD.ORG" Subject: Re: Default Deny References: <200010060056.LAA11152@cairo.anu.edu.au> <39DCC1CB.5FDD7F90@allmaui.com> <20001006204807.M31338@speedy.gsinet> <39DE8D1B.923D86DF@allmaui.com> <20001007171153.P31338@speedy.gsinet> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Received: from acm.org (horio@char.near.this [10.0.172.11]) by long.near.this (8.9.3/8.9.3) with ESMTP id CAA90034 for ; Tue, 10 Oct 2000 02:17:09 +0900 (JST) X-Message-Id: <39E1FD94.83C1C941@acm.org> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Gerhard Sittig wrote: > > > > I use this to reload my settings after changes > > > > #!/bin/sh > > ipf -D > > ipf -Fa -f /etc/ipf.conf -E > > ipnat -CF -f /etc/ipnat.conf > > I would prefer something like > > ipf -I -Fa -f /etc/ipf.conf -v > ( ipf -s; sleep 60; ipf -s; ) & > # heavy testing until the prompt returns > ipf -s # only when you're happy with what the test showed > Here is my preference. ipf -IFa -If ./ipf.rules >errors 2>&1 cat errors test ! -s errors && { rm errors ; ipf -s ; } horio shoichi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message