From owner-freebsd-questions Wed Jul 11 5:32:30 2001 Delivered-To: freebsd-questions@freebsd.org Received: from blueyonder.co.uk (pcow025o.blueyonder.co.uk [195.188.53.125]) by hub.freebsd.org (Postfix) with ESMTP id B3F8C37B403 for ; Wed, 11 Jul 2001 05:32:26 -0700 (PDT) (envelope-from jfm@blueyonder.co.uk) Received: from lexx.my.domain ([62.31.194.122]) by blueyonder.co.uk with Microsoft SMTPSVC(5.5.1877.687.68); Wed, 11 Jul 2001 13:32:25 +0100 From: John Murphy To: questions@FreeBSD.ORG Subject: Re: ipfilter stumper Date: Wed, 11 Jul 2001 13:32:50 +0100 Organization: poor Reply-To: jfm@blueyonder.co.uk Message-ID: References: <200107110119.f6B1JK500692@home.com> In-Reply-To: <200107110119.f6B1JK500692@home.com> X-Mailer: Forte Agent 1.8/32.548 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG tyler spivey wrote: >how do i get the message "ipfileter alreadyin initialized to keep sto = stop keep stop appearing/sorry for my spelling but i just got a big dos. >how can i fglush or reload the ipf rules without rebooting? >and how can firewall aaa.bbb.ccc.* or aaa.bbb.ccc.ddd out?=20 ipfilter_flags=3D"-E" # should be *empty* when ipf is _not_ a= module # (i.e. compiled into the kernel) to # avoid a warning about "already = initialized" The above is from /etc/defaults/rc.conf but don't make any changes there. Just put what you want (without the -E) in /etc/rc.conf Use ipf -Fa -f /etc/ipf.rules to reload ipf rules Use aaa.bbb.ccc.ddd/24 to block aaa.bbb.ccc.0 to 255 or aaa.bbb.ccc.ddd/32 to block aaa.bbb.ccc.ddd John. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message