From owner-freebsd-current@FreeBSD.ORG  Sun Jul 13 06:11:31 2003
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 1585037B407; Sun, 13 Jul 2003 06:11:31 -0700 (PDT)
Received: from serio.al.rim.or.jp (serio.al.rim.or.jp [202.247.191.123])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id BAD4D43FA3; Sun, 13 Jul 2003 06:11:29 -0700 (PDT)
	(envelope-from matoba@st.rim.or.jp)
Received: from mail6.rim.or.jp
	by serio.al.rim.or.jp (3.7W/HMX-13) id WAA24238;
	Sun, 13 Jul 2003 22:11:28 +0900 (JST)
Received: from localhost (ntkngw076167.kngw.nt.adsl.ppp.infoweb.ne.jp
	[220.145.116.167]) by mail6.rim.or.jp (8.9.3/3.7W)
	id WAA24211; Sun, 13 Jul 2003 22:11:26 +0900 (JST)
Date: Sun, 13 Jul 2003 22:11:15 +0900 (JST)
Message-Id: <20030713.221115.730550024.matoba@st.rim.or.jp>
To: freebsd-current@freebsd.org
From: MATOBA Hirozumi <matoba@st.rim.or.jp>
In-Reply-To: <49176.192.168.1.10.1058098656.squirrel@webmail.xtaz.co.uk>
	<20030713.024127.730548457.matoba@st.rim.or.jp>
References: <49176.192.168.1.10.1058098656.squirrel@webmail.xtaz.co.uk>
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
cc: freebsd-ipfw@freebsd.org
Subject: Re: IPFW and/or rc rule parsing not working since today's cvsup
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 13 Jul 2003 13:11:31 -0000

 On Sun, 13 Jul 2003 13:17:36 +0100 (BST), "Matt" wrote:
| The problem I have is this. In rc.conf I have the following:
| 
| firewall_enable="YES"
| firewall_script="/etc/rc.firewall"
| firewall_type="/etc/ipfw.conf"
| 
| And in /etc/ipfw.conf I have sets of rules one line at a time like:
| 
| add 00010 divert natd all from any to any via xl0
| add 00120 allow tcp from any to any 80 via xl0
| 
| etc.
| 
| This has always worked for me ever since I first started using ipfw on
| fbsd 4.1 and has always worked on current until today's cvsup. Now though
| no rules get loaded.
| 
| If I try what I have always done in the past which is ipfw -q flush &&
| ipfw /etc/ipfw.conf then it tells me:
| 
| usage: ipfw [options]
| do "ipfw -h" or see ipfw manpage for details

If your "/etc/ipfw.conf" has blank line(s), 
then you maybe met the same situation as me. 

The mail that I posted to freebsd-ipfw@freebsd.org is:
<http://docs.freebsd.org/cgi/getmsg.cgi?fetch=65503+0+archive/2003/freebsd-ipfw/20030713.freebsd-ipfw>

There are 3 cases for calling show_usage() in ipfw2.c. 
My case is caught by "if (l == 0)" in ipfw_main(). 
The other cases are caught by "if (ac == 0)"
and by "while ((ch = getopt(ac, av, "acdefhnNqs:STtv")) != -1)
                switch (ch) {
                  ...
                  default:". 

-- 
matoba@st.rim.or.jp