From owner-freebsd-questions Thu Apr 27 3:42:37 2000 Delivered-To: freebsd-questions@freebsd.org Received: from smtp2.tbv.se (smtp2.tbv.se [193.15.92.33]) by hub.freebsd.org (Postfix) with ESMTP id 0CF9337B6A1 for ; Thu, 27 Apr 2000 03:42:34 -0700 (PDT) (envelope-from james.wilde@tbv.se) Received: (from uucp@localhost) by smtp2.tbv.se (8.9.1/8.9.1) id MAA15227 for ; Thu, 27 Apr 2000 12:57:59 +0200 (CEST) (envelope-from james.wilde@tbv.se) Received: from t5o72p49.telia.com(212.181.217.49), claiming to be "tbvhks12" via SMTP by smtp2.tbv.se, id smtpdf15225; Thu Apr 27 12:57:51 2000 From: "James A Wilde" To: "FreeBSD Questions" Subject: Some questions on ipfw Date: Thu, 27 Apr 2000 12:43:39 +0200 Message-ID: <006401bfb035$72f04f10$8c0aa8c0@hk.tbv.se> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook 8.5, Build 4.71.2377.0 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I have a few questions on ipfw and rc.firewall to which I haven't found the answers in the hb. I understand that one needs options FIREWALL to include ipfw functionality in the kernel. However, when it comes to options FIREWALL_VERBOSE and options FIREWALL_VERBOSE_LIMIT=nn are these alternatives or does the first act as a toggle and the second set a limit? I have set firewall=client in rc.conf followed by ipfw ipfilter.cfg, the file which comprises my rules. Two questions here - are there any standards for the naming of files in connection with ipfw and is there an alternative/preferred method of installing the rules at boot time? And finally, rc.firewall. This has a lot of stuff which looks like configuration information. All the lines begin $fwcmd. Two of the lines open a client firewall for in- and outgoing DNS traffic but these are not permitted after a boot unless I include rules in the ipfilter.cfg file mentioned earlier. How is rc.firewall called and where can I find information on this file? There does not appear to be a man entry, neither for firewall nor for rc.firewall. Thanks in advance. mvh/regards James To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message