From owner-freebsd-stable  Thu Jan 31  7:30:39 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from wasp.eng.ufl.edu (wasp.eng.ufl.edu [128.227.116.1])
	by hub.freebsd.org (Postfix) with ESMTP id 08ED437B404
	for <stable@freebsd.org>; Thu, 31 Jan 2002 07:30:31 -0800 (PST)
Received: from eng.ufl.edu (scanner.engnet.ufl.edu [128.227.152.221])
	by wasp.eng.ufl.edu (8.9.3/8.9.3) with ESMTP id KAA01595;
	Thu, 31 Jan 2002 10:30:29 -0500 (EST)
Message-ID: <3C596315.576987D0@eng.ufl.edu>
Date: Thu, 31 Jan 2002 10:30:29 -0500
From: Bob Johnson <bob@eng.ufl.edu>
Reply-To: bobj88@garbonzo.hos.ufl.edu
X-Mailer: Mozilla 4.79 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: en, eo
MIME-Version: 1.0
To: stable@freebsd.org
Cc: patrick@stealthgeeks.net
Subject: Re: firewall config (CTFM)
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

On Monday, January 28, 2002, at 03:10 , Patrick Greenwell wrote:

>> in RELENG_4 from 5 Nov, /etc/defaults/rc.conf reads:
>> -snip-
>> firewall_enable="NO"        # Set to YES to enable firewall 
>> functionality
>> firewall_script="/etc/rc.firewall" # Which script to run to set up the
>> firewall
>> -snip-
>>
>> change the first line to read:
>> firewall_enable="NO"         # set to YES to enable running of the
>> following firewall script


So would it cause much breakage to rename 'firewall_enable' to 
"firewall_script_enable" some time in the near future, and leave 
the behavior otherwise unchanged?  E.G.

 firewall_script_enable="NO"        # Set to YES to load a firewall setup script
 firewall_script="/etc/rc.firewall" # Location of firewall setup script

If I understand the issues correctly, this ought to give enough clue 
without breaking existing behavior, except for the unfortunate side 
effects of the variable name change.  But that's why you read UPDATING, 
right?  And I suppose that for some transition period (i.e. until 4.6R) 
both names could be supported, with a note that 'firewall_enable' is 
deprecated.  Or simply don't mention it at all in the config files, 
just support it in the appropriate script.



- Bob

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message