Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 12 Nov 2004 08:11:36 -0800
From:      "David Roberts" <dtrobert@pacbell.net>
To:        <tw@wsf.at>, <freebsd-ipfw@freebsd.org>
Subject:   RE: upgrading from 5.2.1 to 5.3 broke my ipfw
Message-ID:  <20041112161136.B910C43D2D@mx1.FreeBSD.org>
In-Reply-To: <20041112094354.fqa1koqnuxkc88@.mailhost.wsf.at>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
David Roberts <dtrobert@pacbell.net> schrieb:

>> Hi,
>>  I have been using ipfw for some time now and recently upgraded from 
>> 5.2.1 to 5.3. My firewall immediately started blocking me even from 
>> pinging localhost.
>> 
>> I also noted an error around an ipfw log entry I had and commented it
out. 
>> I checked online and saw an IPFIREWALL_DEFAULT_TO_ACCEPT and figured 
>> I'd give it a try since I was always frustrated that flushing my rules 
>> would bump me off. I rebuilt the kernel and now I have the opposite 
>> problem, eveything is allowed no matter what my rules say.

>Are you 100% sure that your kernel and userland are in sync?
>I am pretty sure that ignoring every rule and just applying the default
rule points to the userland part of ipfw not >>corresponding to the kernel
part.

I believe so. I did a "makebuildworld, makekernel, installkernel,
mergemaster, installworld, reboot" following a full cvsup. My kernel is
custom but nothing new from prior releases. 

I will try installworld once again to see if that changes anything. 




>Thomas

>--
>Thomas Wolf
>Wiener Software Fabrik
>Dubas u. Wolf GMBH
>1050 Wien, Mittersteig 4



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?20041112161136.B910C43D2D>