Date: Thu, 6 Mar 2003 02:33:21 -0600 From: Sean Kelly <smkelly@zombie.org> To: current@freebsd.org Subject: /etc/rc.d/ipfw Message-ID: <20030306083321.GB3045@edgemaster.zombie.org>
next in thread | raw e-mail | index | archive | help
--nVMJ2NtxeReIH9PS
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
the ipfw_start() function in /etc/rc.d/ipfw is missing a command:
sysctl net.inet.ip.fw.enable=3D1
edgemaster# /etc/rc.d/ipfw restart
net.inet.ip.fw.enable: 1 -> 0
Flushed all rules.
=2E..
Firewall rules loaded, starting divert daemons:.
edgemaster# sysctl net.inet.ip.fw.enable
net.inet.ip.fw.enable: 0
This simple patch fixes it, and also changes a `sysctl` to a ${SYSCTL_W}.
--- ipfw.old Thu Mar 6 02:22:37 2003
+++ ipfw Thu Mar 6 02:31:58 2003
@@ -35,6 +35,7 @@
=20
if [ -r "${firewall_script}" ]; then
. "${firewall_script}"
+ ${SYSCTL_W} net.inet.ip.fw.enable=3D1 >/dev/null
echo -n 'Firewall rules loaded, starting divert daemons:'
=20
# Network Address Translation daemon
@@ -63,7 +64,7 @@
! checkyesno firewall_logging && return 0
=20
echo 'Firewall logging=3DYES'
- sysctl net.inet.ip.fw.verbose=3D1 >/dev/null
+ ${SYSCTL_W} net.inet.ip.fw.verbose=3D1 >/dev/null
}
=20
load_rc_config $name
--=20
Sean Kelly | PGP KeyID: D2E5E296
smkelly@zombie.org | http://www.zombie.org
--nVMJ2NtxeReIH9PS
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (FreeBSD)
iD8DBQE+ZwfRPm7A9NLl4pYRArReAJ9ZQW0FYaL9qnrv/fx3coFjwd2j9wCgjsqA
Pm6wjODb7mupfSk+fN5M98s=
=e4GB
-----END PGP SIGNATURE-----
--nVMJ2NtxeReIH9PS--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030306083321.GB3045>