Date: Thu, 26 Jan 2006 16:29:43 -0800 (PST) From: gahn <ipfreak@yahoo.com> To: Oxygenshell <admin@oxygenshell.com>, Arne Woerner <arne_woerner@yahoo.com>, freebsd security <freebsd-security@freebsd.org>, freebsd general questions <freebsd-questions@freebsd.org> Subject: Re: strange problem with ipfw and rc.conf Message-ID: <20060127002943.78046.qmail@web52103.mail.yahoo.com> In-Reply-To: <01ee01c622d7$b8e77f50$6501a8c0@bob>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks for the comments. My real problem is thta the rc.conf just won load the rulesets when the system reboots. I have to do this every time the system reboots: "sh /etc/ipfw.rules" --- Oxygenshell <admin@oxygenshell.com> wrote: > ipfw rules automatically default to deny > You have to explicitly tell it to allow by default. > (kernel setting) > > > ----- Original Message ----- > From: "Arne Woerner" <arne_woerner@yahoo.com> > To: "gahn" <ipfreak@yahoo.com>; "freebsd security" > <freebsd-security@freebsd.org>; "freebsd general > questions" > <freebsd-questions@freebsd.org> > Sent: Thursday, January 26, 2006 7:03 PM > Subject: Re: strange problem with ipfw and rc.conf > > > > --- gahn <ipfreak@yahoo.com> wrote: > >> 65335 locking out everything). I have to do "sh > >> /etc/ipfw.rules" in order to load the rulesets, > once I > >> did that, I can access the box from remote > locations > >> > > Hmm... > > > > It helped me, to look at /etc/rc.firewall... There > are some > > comments, that might give u the right hints... > > > > Maybe firewall_enable should be YES? > > > > E. g. my /etc/rc.firewall.bartely file cannot be > executed with > > sh... But maybe I still did not understand ipfw... > > > > My /etc/rc.firewall.bartely contains rules like: > > add pass log all from any to 47.11.42.42 > > add deny log all from any to any > > > > And in rc.conf my > firewall_type=/etc/rc.firewall.bartleby > > > > And I use default firewall_script=/etc/rc.firewall > > > > -Arne > > > > > > __________________________________________________ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > _______________________________________________ > > freebsd-security@freebsd.org mailing list > > > http://lists.freebsd.org/mailman/listinfo/freebsd-security > > To unsubscribe, send any mail to > > "freebsd-security-unsubscribe@freebsd.org" > > > > > > > __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060127002943.78046.qmail>