Date: Wed, 18 Jan 2006 16:26:26 +0100 From: Erik Norgaard <norgaard@locolomo.org> To: Gable Barber <gablebarber@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: How to tell if IPF is running? Message-ID: <43CE5E22.4080605@locolomo.org> In-Reply-To: <aab166ce0601180627s781f0bdk108a8eabbe36136c@mail.gmail.com> References: <aab166ce0601180627s781f0bdk108a8eabbe36136c@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Gable Barber wrote: > Howdy List... > I am trying to figure out if ipf is running for certain. FreeBSD 6.0-RELEASE > . > > > > I added the following to /etc/rc.conf : > > ipfilter_enable="YES" > ipmon_enable="YES" > ipmon_flags="-Dsvn" > ipnat_enable="YES" > ipfs_enable="YES" > > I added a rule file /etc/ipf.conf , and flushed/reloaded ipf with the > command > > # ipf -Fa -f /etc/ipf.conf > > I have rebooted since the additions to /etc/rc.conf > > ps aux | grep ipf > > Shows nothing. I do see ipmon in there however. > > ipfstat command, shows me stats, so I suppose it is running, but I assumed > (incorrectly?) that I would "see" ipf with ps aux . Yes, incorrectly, if you have any rules with the log key word, then you can se if you get any entries in your log files. I would have default rules first in my rule set: block log in all block log out all And then pass what I positively know is good. Cheers, Erik
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43CE5E22.4080605>