From owner-freebsd-questions  Tue Oct  2 21: 6:48 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from linus.highpoint.edu (linus.highpoint.edu [192.154.46.106])
	by hub.freebsd.org (Postfix) with ESMTP id 12FBF37B401
	for <freebsd-questions@FreeBSD.ORG>; Tue,  2 Oct 2001 21:06:45 -0700 (PDT)
Received: (from zhartley@localhost)
	by linus.highpoint.edu (8.11.2/8.11.2) id f9345aM09088
	for freebsd-questions@FreeBSD.ORG; Wed, 3 Oct 2001 00:05:36 -0400
Date: Wed, 3 Oct 2001 00:05:36 -0400
From: Zach Hartley <zhartley@linus.highpoint.edu>
To: freebsd-questions <freebsd-questions@FreeBSD.ORG>
Subject: Re: ipfw starts at boot-up
Message-ID: <20011003000536.C8905@linus.highpoint.edu>
Mail-Followup-To: freebsd-questions <freebsd-questions@FreeBSD.ORG>
References: <20011002234121.27ffd120.mace_nathan@uchaswv.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20011002234121.27ffd120.mace_nathan@uchaswv.edu>; from mace_nathan@uchaswv.edu on Tue, Oct 02, 2001 at 11:41:21PM -0400
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Well, one (very ghetto) way of getting around that would be this:

add the following to rc.local
ipfw flush
ipfw add allow ip from any to any

its what i use when i don't feel like monkeying around with the firewall.
hth

Zach

Around Tue, Oct 02, 2001 at 11:41:21PM -0400, Nathan Mace thus spake the following:
> i just compiled my kernel to include ipfw support....installed
> it..restarted....it's 11:30PM here...the firewall is just a pet project
> that i'm running on my personal machine...it can wait a few days.  it's
> set by default to deny all....i got it opened up enough to sent mail and
> get on the net(duh or you wouldn't be reading this)....but my question
> is....according to 'man rc.conf" i can add some options to the
> /etc/rc.conf file like whether or not to start the firewall when the OS
> boots...eventually i'll want it to..but not until i get it configured. 
> so i set that to no..and a few other options then i rebooted
> 
> when it boots up is says that firewall_enable = "NO" is not a valid
> command...basically along the lines that it doesn't know what to do with
> it.  what am i doing wrong?  none of the options i entered concerning
> the firewall to rc.conf file work...they all say what the 1st one does. 
> i've attached my rc.conf file...can someone look at it and maybe tell me
> what i'm doing wrong?  i found some doc's at www.onlamp.com and thats
> what they do as well.....what do i do?  
> 
> thanks
> nathan


-- 
Zachary Todd Hartley
"Attempted murder. Now honestly, what is that?
Do they give a Nobel Prize for attempted chemistry?"
	--Sideshow Bob

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message