From owner-freebsd-security@FreeBSD.ORG Fri Jan 27 13:21:50 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A89A816A420 for ; Fri, 27 Jan 2006 13:21:50 +0000 (GMT) (envelope-from Zhechev@lirex.bg) Received: from tquila.lirex.com (tquila.lirex.com [194.12.246.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id E6AEE43D46 for ; Fri, 27 Jan 2006 13:21:49 +0000 (GMT) (envelope-from Zhechev@lirex.bg) Received: from 194.12.246.25 ([194.12.246.25]) by tquila.lirex.com ([194.12.246.134]) with Microsoft Exchange Server HTTP-DAV ; Fri, 27 Jan 2006 13:21:45 +0000 Received: from sf-m-zhechev by tquila.lirex.com; 27 Jan 2006 15:21:45 +0000 From: "Zhecho E. Zhechev" To: ipfreak@yahoo.com Content-Type: text/plain; charset=iso-8859-5 Content-Transfer-Encoding: quoted-printable Date: Fri, 27 Jan 2006 15:21:44 +0000 Message-Id: <1138375305.830.30.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.4.2.1 FreeBSD GNOME Team Port X-Mailman-Approved-At: Fri, 27 Jan 2006 13:36:17 +0000 Cc: freebsd-security@freebsd.org Subject: Re: strange problem with ipfw and rc.conf X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jan 2006 13:21:50 -0000 Hi ipfreak, Meditate on this :) 1. ..... why securelevel =3D 2 and what it does? kern_securelevel=3D"2" kern_securelevel_enable=3D"YES" 2. ...... Is in the ipfw.rules has a simple section?=20 ......Is the firewall_enable=3D"YES" figure in the rc.conf file? firewall_script=3D"/etc/ipfw.rules"=20 firewall_type=3D"simple" firewall_quiet=3D"YES" 3. If you wish to work with firewall (ipfw) why ipfilter is on? ipfilter_enable=3D"YES" ipfilter_rules=3D"/etc/ipf.rules" =20 If you answer yourself these questions , you will find the real solution! sorry for my terrible english=20 =DF=DE=D7=D4=E0=D0=D2=D8 !