Date: Mon, 07 Apr 2003 13:23:15 +0100 From: John Murphy <jfm@blueyonder.co.uk> To: questions@FreeBSD.ORG Subject: Re: 4.8 ipfilter ruleset compatibility question Message-ID: <9cr29vcqs73p0qm6imstf0skep5lk94436@4ax.com> In-Reply-To: <74i19v4isusmlrpohohodush0gnmmsutvk@4ax.com> References: <74i19v4isusmlrpohohodush0gnmmsutvk@4ax.com>
next in thread | previous in thread | raw e-mail | index | archive | help
John Murphy <jfm@blueyonder.co.uk> wrote: >I've upgraded from 4.4 to 4.8 release by re-installation and then = copying: >/etc/rc.conf and the usual others from the old drive to the new. = Including >the old, previously working, ipf.rules and ipnat.rules. Solved. Previous to 4.5 rc.conf required: ipfilter_program=3D"/sbin/ipf -Fa -f" ipnat_program=3D"/sbin/ipnat -CF -f" Whereas Post 4.5 only: ipfilter_program=3D"/sbin/ipf" ipnat_program=3D"/sbin/ipnat" is required to start ipfilter and ipnat. With 4.8 _and_ the flags all packets were passed regardless of the rules and ipfstat showed no packets blocked. Without the flags everything seems to work as before. John.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9cr29vcqs73p0qm6imstf0skep5lk94436>