From owner-freebsd-current@FreeBSD.ORG Thu Aug 19 16:56:40 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A22B16A4D0 for ; Thu, 19 Aug 2004 16:56:40 +0000 (GMT) Received: from mail.gmx.net (pop.gmx.de [213.165.64.20]) by mx1.FreeBSD.org (Postfix) with SMTP id 3236343D39 for ; Thu, 19 Aug 2004 16:56:39 +0000 (GMT) (envelope-from andreas.kohn@gmx.net) Received: (qmail 7582 invoked by uid 65534); 19 Aug 2004 16:56:38 -0000 Received: from unknown (EHLO [212.204.44.203]) (212.204.44.203) by mail.gmx.net (mp020) with SMTP; 19 Aug 2004 18:56:38 +0200 X-Authenticated: #2431876 From: Andreas Kohn To: Ruslan Ermilov In-Reply-To: <20040819163307.GD82175@ip.net.ua> References: <20040819152456.GE81657@ip.net.ua> <1092932213.67807.29.camel@klamath.ankon.de.eu.org> <20040819163307.GD82175@ip.net.ua> Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-qw3HxGLelq9HACGGMAaS" Message-Id: <1092934597.67807.34.camel@klamath.ankon.de.eu.org> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Thu, 19 Aug 2004 18:56:37 +0200 cc: current@freebsd.org Subject: Re: More about recent IPFW changes X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Aug 2004 16:56:40 -0000 --=-qw3HxGLelq9HACGGMAaS Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi, On Thu, 2004-08-19 at 18:33, Ruslan Ermilov wrote: > On Thu, Aug 19, 2004 at 06:16:53PM +0200, Andreas Kohn wrote: > > On Thu, 2004-08-19 at 17:24, Ruslan Ermilov wrote: > > > Andre, > > >=20 > > > There was also an API change: net.inet.ip.fw.enable > > > is no longer available, the removal wasn't mentioned > > > in your HEADS UP nor in the commit log, and this now > > > breaks /etc/rc.d/ipfw. What's the replacement for > > > this sysctl, to disable firewall in run-time? > >=20 > > I replaced these two lines in rc.d/ipfw with ipfw (enable|disable) > > firewall. > >=20 > The "ipfw enable|disable firewall" uses the same non-existing > sysctl: >=20 > } else if (strncmp(*av, "firewall", strlen(*av)) =3D=3D 0) { > sysctlbyname("net.inet.ip.fw.enable", NULL, 0, > &which, sizeof(which)); >=20 >=20 :/ True. I didn't check the code, I needed a working quick solution because my network access was dead after the update. Ipfw enable didn't output any messages, so I thought it would be okay.=20 sorry for the noise, Andreas. --=-qw3HxGLelq9HACGGMAaS Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQBBJNvEYucd7Ow1ygwRAqpfAJ0RXTipb1AlnV1eQ2YACDY3ZL1VGwCbBs6I tRfECrtHjiCmEPaXO8HZiSE= =nXKf -----END PGP SIGNATURE----- --=-qw3HxGLelq9HACGGMAaS--