Date: Sat, 26 Aug 2006 18:52:25 -0500 From: "J.D. Bronson" <jbronson@wixb.com> To: Giorgos Keramidas <keramida@ceid.upatras.gr> Cc: freebsd-questions@freebsd.org, Duane Hill <d.hill@yournetplus.com>, "J.D. Bronson" <jbronson@wixb.com> Subject: Re: ipfilter on 6.1 Message-ID: <7.0.1.0.2.20060826185111.01970438@sixcompanies.com> In-Reply-To: <20060826233750.GA3300@gothmog.pc> References: <7.0.1.0.2.20060826150124.01982d10@sixcompanies.com> <20060826204015.GI1311@gothmog.pc> <7.0.1.0.2.20060826160530.01982d10@sixcompanies.com> <20060826220706.GC2666@gothmog.pc> <7.0.1.0.2.20060826170941.01982d10@sixcompanies.com> <20060826221904.GD2666@gothmog.pc> <7.0.1.0.2.20060826174612.01982d10@sixcompanies.com> <20060826233750.GA3300@gothmog.pc>
next in thread | previous in thread | raw e-mail | index | archive | help
At 06:37 PM 8/26/2006, Giorgos Keramidas wrote: >Cool! If this is indeed the fix, let us know :) > >If you also feel like it and you are not limited by contract or >other things, I'd be interested to see how you modified IP Filter >to make it use a "block by default" policy. > >Regards, >Giorgos This fixed it. WHEW! Simply adding this to my own kernel: options IPFILTER options IPFILTER_LOG options IPFILTER_DEFAULT_BLOCK .... then: # ipf -V ipf: IP Filter: v4.1.8 (416) Kernel: IP Filter: v4.1.8 Running: yes Log Flags: 0 = none set Default: block all, Logging: available Active list: 0 Feature mask: 0xa
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7.0.1.0.2.20060826185111.01970438>