Date: Tue, 3 Apr 2007 13:03:24 +0300 From: Mike Makonnen <mtm@FreeBSD.Org> To: AT Matik <asstec@matik.com.br> Cc: jonw@whoweb.com, freebsd-ipfw@freebsd.org Subject: Re: conf/78762: [ipfw] [patch] /etc/rc.d/ipfw should excecute $fire wall_script not read it Message-ID: <20070403100324.GA1710@rogue.navcom.lan> In-Reply-To: <200704021302.52345.asstec@matik.com.br> References: <200704021540.l32FerX8074400@freefall.freebsd.org> <200704021302 .52345.asstec@matik.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Apr 02, 2007 at 01:02:51PM -0300, AT Matik wrote: > On Monday 02 April 2007 12:40, Mike Makonnen wrote: > > Synopsis: [ipfw] [patch] /etc/rc.d/ipfw should excecute $firewall_script > > not read it > > > > State-Changed-From-To: open->patched > > State-Changed-By: mtm > > State-Changed-When: Mon Apr 2 15:40:10 UTC 2007 > > State-Changed-Why: > > Patched in -CURRENT. > > MFC-After: 2 weeks > > > > http://www.freebsd.org/cgi/query-pr.cgi?pr=78762 > > > btw, is this > > ${SYSCTL_W} net.inet.ip.fw.enable=1 > > which comes after loading firewall_script in /etc/rc.d/ipfw is beeing > corrected also? Probably better setting this in ipfw_precmd () I'm not sure I understand. Are you saying the firewall should be enabled in a precmd() subroutine? If so, I don't think that's a good idea. The firewall should be enabled only after the firewall script has been *successfully* loaded. Cheers. -- Mike Makonnen | GPG-KEY: http://people.freebsd.org/~mtm/mtm.asc mmakonnen @ gmail.com | AC7B 5672 2D11 F4D0 EBF8 5279 5359 2B82 7CD4 1F55 mtm @ FreeBSD.Org | FreeBSD - http://www.freebsd.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070403100324.GA1710>