Date: Sat, 14 Dec 2002 14:12:52 -0800 From: Maxime Henrion <mux@freebsd.org> To: Matthew Dillon <dillon@apollo.backplane.com> Cc: David O'Brien <obrien@FreeBSD.ORG>, current@FreeBSD.ORG Subject: Re: ipfw userland breaks again. Message-ID: <20021214221252.GF27086@elvis.mu.org> In-Reply-To: <200212142209.gBEM9D8p002479@apollo.backplane.com> References: <200212142025.aa99706@salmon.maths.tcd.ie> <200212142038.gBEKcDVv029924@apollo.backplane.com> <20021214204426.GA62058@dragon.nuxi.com> <200212142209.gBEM9D8p002479@apollo.backplane.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Matthew Dillon wrote: > > : > :On Sat, Dec 14, 2002 at 12:38:13PM -0800, Matthew Dillon wrote: > :> then, as usual, IPFW with the new kernel and > :> old world fails utterly and now the fragging machine can't access the > : > :Hear hear!! I am >< tempted to have /sbin/ipfw moved to src/sys. > > How about something like this (patch enclosed). If there are no > objections I will commit it along with a documentation update, and > maybe also add some RC code give the sysad a chance to ipfw unbreak if > ipfw otherwise fails during the boot sequence. I have a patch here which makes the IPFIREWALL_DEFAULT_TO_ACCEPT tunable at module load time using a kernel environment variable. Looks to me that it would do what you want. Maxime To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021214221252.GF27086>