Date: Thu, 19 Aug 2004 19:33:07 +0300 From: Ruslan Ermilov <ru@freebsd.org> To: Andreas Kohn <andreas.kohn@gmx.net> Cc: current@freebsd.org Subject: Re: More about recent IPFW changes Message-ID: <20040819163307.GD82175@ip.net.ua> In-Reply-To: <1092932213.67807.29.camel@klamath.ankon.de.eu.org> References: <20040819152456.GE81657@ip.net.ua> <1092932213.67807.29.camel@klamath.ankon.de.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--qGV0fN9tzfkG3CxV
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Aug 19, 2004 at 06:16:53PM +0200, Andreas Kohn wrote:
> On Thu, 2004-08-19 at 17:24, Ruslan Ermilov wrote:
> > Andre,
> >=20
> > There was also an API change: net.inet.ip.fw.enable
> > is no longer available, the removal wasn't mentioned
> > in your HEADS UP nor in the commit log, and this now
> > breaks /etc/rc.d/ipfw. What's the replacement for
> > this sysctl, to disable firewall in run-time?
>=20
> I replaced these two lines in rc.d/ipfw with ipfw (enable|disable)
> firewall.
>=20
The "ipfw enable|disable firewall" uses the same non-existing
sysctl:
} else if (strncmp(*av, "firewall", strlen(*av)) =3D=3D 0) {
sysctlbyname("net.inet.ip.fw.enable", NULL, 0,
&which, sizeof(which));
Cheers,
--=20
Ruslan Ermilov
ru@FreeBSD.org
FreeBSD committer
--qGV0fN9tzfkG3CxV
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (FreeBSD)
iD8DBQFBJNZDqRfpzJluFF4RAm/CAJ9vDIVcvOWER+7DKNNAjQSYas80QACeKvNq
XP24/YnkW2Vi2Jbp+QG1n6M=
=8YJa
-----END PGP SIGNATURE-----
--qGV0fN9tzfkG3CxV--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040819163307.GD82175>