From owner-freebsd-ipfw Fri Sep 13 11:16:35 2002 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8655A37B400 for ; Fri, 13 Sep 2002 11:16:32 -0700 (PDT) Received: from mail.tcoip.com.br (erato.tco.net.br [200.220.254.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7C57B43E6A for ; Fri, 13 Sep 2002 11:16:30 -0700 (PDT) (envelope-from dcs@tcoip.com.br) Received: from tcoip.com.br ([10.0.2.6]) by mail.tcoip.com.br (8.11.6/8.11.6) with ESMTP id g8DIGGx08715; Fri, 13 Sep 2002 15:16:16 -0300 Message-ID: <3D822B6F.6010007@tcoip.com.br> Date: Fri, 13 Sep 2002 15:16:15 -0300 From: "Daniel C. Sobral" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.1) Gecko/20020905 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Luigi Rizzo Cc: ipfw@FreeBSD.ORG Subject: Re: ipfw2 and rc.firewall References: <3D81D03A.8050009@tcoip.com.br> <20020913111101.A13603@iguana.icir.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Luigi Rizzo wrote: > On Fri, Sep 13, 2002 at 08:47:06AM -0300, Daniel C. Sobral wrote: > ... > >>work fine under ipfw1. All we would need is someway to tell ipfw2 and >>ipfw1 appart so that we can select between flush and the disabled set at >>the beginning/end of rc.firewall. > > > you can use some ipfw2-only feature e.g. > > firewall=ipfw1; ipfw set show 2> /dev/null || firewall=ipfw2 > echo "You are using $firewall" Yes, as much as I hate this kind of test, it's one we could do. :-) Except for redirecting stdio also to /dev/null, just in case it _is_ ipfw2. :-) At any rate, I'd live *some* feedback on the subject from the community at large before making such a change! :-) If nothing else, it kind of appropriates set 30 for it's own use. -- Daniel C. Sobral (8-DCS) Gerencia de Operacoes Divisao de Comunicacao de Dados Coordenacao de Seguranca TCO Fones: 55-61-313-7654/Cel: 55-61-9618-0904 E-mail: Daniel.Capo@tco.net.br Daniel.Sobral@tcoip.com.br dcs@tcoip.com.br Outros: dcs@newsguy.com dcs@freebsd.org capo@notorious.bsdconspiracy.net Television has proved that people will look at anything rather than each other. -- Ann Landers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message