From owner-freebsd-security@FreeBSD.ORG Fri Jan 27 13:54:36 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B33AB16A422 for ; Fri, 27 Jan 2006 13:54:36 +0000 (GMT) (envelope-from zhechev_@mail.ru) Received: from mx6.mail.ru (mx6.mail.ru [194.67.23.26]) by mx1.FreeBSD.org (Postfix) with ESMTP id EF70C43D5C for ; Fri, 27 Jan 2006 13:54:35 +0000 (GMT) (envelope-from zhechev_@mail.ru) Received: from [194.12.246.25] (port=50045 helo=sf-t-mdecheva) by mx6.mail.ru with asmtp id 1F2U3e-000GTF-00; Fri, 27 Jan 2006 16:54:34 +0300 From: zhechev To: ipfreak@yahoo.com Content-Type: text/plain; charset=iso-8859-5 Date: Fri, 27 Jan 2006 15:54:32 +0000 Message-Id: <1138377272.830.32.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.4.2.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 8bit Cc: freebsd-security@freebsd.org Subject: Re: strange problem with ipfw and rc.conf X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jan 2006 13:54:36 -0000 Hi ipfreak, Meditate on this :) 1. ..... why securelevel =3D 2 and what it does? kern_securelevel=3D"2" kern_securelevel_enable=3D"YES" 2. ...... Is in the ipfw.rules has a simple section?=20 ......Is the firewall_enable=3D"YES" figure in the rc.conf file? firewall_script=3D"/etc/ipfw.rules"=20 firewall_type=3D"simple" firewall_quiet=3D"YES" 3. If you wish to work with firewall (ipfw) why ipfilter is on? ipfilter_enable=3D"YES" ipfilter_rules=3D"/etc/ipf.rules" =20 If you answer yourself these questions , you will find the real solution! sorry for my terrible english=20 поздрави!