Date: Wed, 11 May 2005 09:17:13 -0400 From: Nicholas Henry <nicholas.henry@gmail.com> To: freebsd-questions@freebsd.org Subject: Re: firewall_enable: not found Message-ID: <ee11ef4a050511061725adb2e9@mail.gmail.com> In-Reply-To: <20050511122954.GA32377@orion.daedalusnetworks.priv> References: <ee11ef4a05051105157071415a@mail.gmail.com> <20050511122954.GA32377@orion.daedalusnetworks.priv>
next in thread | previous in thread | raw e-mail | index | archive | help
As requested - thank you. /etc/defaults/rc.conf:### Basic network and firewall/security options: ### /etc/defaults/rc.conf:firewall_enable=3D"YES" # Set to YES to enable firewall /etc/defaults/rc.conf:firewall_script=3D"/etc/rc.firewall" # Which script to run to set up the firewall /etc/defaults/rc.conf:firewall_type=3D"UNKNOWN" # Firewall type (see=20 /etc/defaults/rc.conf:firewall_quiet=3D"NO" # Set to YES to suppress rule display /etc/defaults/rc.conf:firewall_logging=3D"NO" # Set to YES to enable events logging /etc/defaults/rc.conf:firewall_flags=3D"" # Flags passed to ipfw when type is a file /etc/defaults/rc.conf:natd_enable=3D"NO" # Enable natd (if firewall_enable =3D=3D YES). /etc/defaults/rc.conf:ipv6_firewall_enable=3D"NO" # Set to YES to enable IPv6 firewall /etc/defaults/rc.conf:ipv6_firewall_script=3D"/etc/rc.firewall6" # Which script to run to set up the IPv6 firewall /etc/defaults/rc.conf:ipv6_firewall_type=3D"UNKNOWN" # IPv6 Firewall type (see /etc/rc.firewall6) /etc/defaults/rc.conf:ipv6_firewall_quiet=3D"NO" # Set to YES to suppress rule display /etc/defaults/rc.conf:ipv6_firewall_logging=3D"NO" # Set to YES to enable events logging /etc/defaults/rc.conf:ipv6_firewall_flags=3D"" # Flags passed to ip6fw when type is a file /etc/rc.d/ip6fw:rcvar=3D`set_rcvar ipv6_firewall` /etc/rc.d/ip6fw: # Load IPv6 firewall module, if not already loaded /etc/rc.d/ip6fw: debug 'Kernel IPv6 firewall module loaded.' /etc/rc.d/ip6fw: warn 'IPv6 firewall kernel module failed to load.' /etc/rc.d/ip6fw: if [ -z "${ipv6_firewall_script}" ]; then /etc/rc.d/ip6fw: ipv6_firewall_script=3D/etc/rc.firewall6 /etc/rc.d/ip6fw: if [ -r "${ipv6_firewall_script}" ]; then /etc/rc.d/ip6fw: . "${ipv6_firewall_script}" /etc/rc.d/ip6fw: warn 'IPv6 firewall rules have not been loaded. Default' \ /etc/rc.d/ip6fw: # Enable firewall logging /etc/rc.d/ip6fw: if checkyesno ipv6_firewall_logging; then /etc/rc.d/ip6fw: # Enable the firewall /etc/rc.d/ipfilter: echo "Saving firewall state tables" /etc/rc.d/ipfw:rcvar=3D"firewall_enable" /etc/rc.d/ipfw: warn unable to load firewall module. /etc/rc.d/ipfw: # set the firewall rules script if none was specified /etc/rc.d/ipfw: [ -z "${firewall_script}" ] && firewall_script=3D/etc/rc.fi= rewall /etc/rc.d/ipfw: if [ -r "${firewall_script}" ]; then /etc/rc.d/ipfw: . "${firewall_script}" /etc/rc.d/ipfw: echo 'Warning: kernel has firewall functionality, b= ut' \ /etc/rc.d/ipfw: ' firewall rules are not enabled.' /etc/rc.d/ipfw: if checkyesno firewall_logging; then /etc/rc.d/ipfw: # Enable the firewall /etc/rc.d/ipfw: # Disable the firewall /etc/pf.os:# the case that X is a NAT firewall. While nmap is talking to th= e /etc/pf.os:# device itself, p0f is fingerprinting the guy behind the firewa= ll /etc/pf.os:# caused by a commonly used software (personal firewalls, securi= ty /etc/pf.os:# KEEP IN MIND: Some packet firewalls configured to normalize outgoing /etc/pf.os:# system (and probably not quite to the firewall either). /etc/pf.os:60352:64:0:52:M1460,N,W2,N,N,S: =20 Clavister:7::Clavister firewall 7.x /etc/rc.firewall:# $FreeBSD: src/etc/rc.firewall,v 1.47 2003/11/02 07:31:44 ru Exp $ /etc/rc.firewall:# Setup system for firewall service. /etc/rc.firewall:# Define the firewall type in /etc/rc.conf. Valid values = are: /etc/rc.firewall:# UNKNOWN - disables the loading of firewall rules. /etc/rc.firewall: firewall_type=3D"${1}" /etc/rc.firewall:case ${firewall_quiet} in /etc/rc.firewall:# before they encounter your remaining rules. The firewall rules /etc/rc.firewall:# For ``simple'' firewall type the divert rule should be put to a /etc/rc.firewall:case ${firewall_type} in /etc/rc.firewall:# do this as your only action by setting the firewall_type to ``open''. /etc/rc.firewall:case ${firewall_type} in /etc/rc.firewall: # This is a prototype setup for a simple firewall. Configure this /etc/rc.firewall: if [ -r "${firewall_type}" ]; then /etc/rc.firewall: ${fwcmd} ${firewall_flags} ${firewall_type} /etc/rc.firewall6:# Setup system for IPv6 firewall service. /etc/rc.firewall6:# $FreeBSD: src/etc/rc.firewall6,v 1.15 2004/08/03 08:58:34 ume Exp $ /etc/rc.firewall6:# Define the firewall type in /etc/rc.conf. Valid values= are: /etc/rc.firewall6:# UNKNOWN - disables the loading of firewall rules. /etc/rc.firewall6: ipv6_firewall_type=3D"${1}" /etc/rc.firewall6:case ${ipv6_firewall_quiet} in /etc/rc.firewall6:# do this as your only action by setting the ipv6_firewall_type to ``open''. /etc/rc.firewall6:case ${ipv6_firewall_type} in /etc/rc.firewall6: # This is a prototype setup for a simple firewall. Configure this /etc/rc.firewall6: if [ -r "${ipv6_firewall_type}" ]; then /etc/rc.firewall6: ${fw6cmd} ${ipv6_firewall_flags} ${ipv6_firewall_type} /etc/namedb/named.conf: * If there is a firewall between you and nameservers you want /etc/rc.conf:firewall_enable =3D"YES" /etc/rc.conf:firewall_script=3D"/etc/ipfw.rules" /etc/rc.conf:firewall_logging=3D"YES" =20 /etc/rc.firewall.bak:# $FreeBSD: src/etc/rc.firewall,v 1.47 2003/11/02 07:31:44 ru Exp $ /etc/rc.firewall.bak:# Setup system for firewall service. /etc/rc.firewall.bak:# Define the firewall type in /etc/rc.conf.=20 Valid values are: /etc/rc.firewall.bak:# UNKNOWN - disables the loading of firewall rules. /etc/rc.firewall.bak: firewall_type=3D"${1}" /etc/rc.firewall.bak:case ${firewall_quiet} in /etc/rc.firewall.bak:# before they encounter your remaining rules.=20 The firewall rules /etc/rc.firewall.bak:# For ``simple'' firewall type the divert rule should be put to a /etc/rc.firewall.bak:case ${firewall_type} in /etc/rc.firewall.bak:# do this as your only action by setting the firewall_type to ``open''. /etc/rc.firewall.bak:case ${firewall_type} in /etc/rc.firewall.bak: # This is a prototype setup for a simple firewall. Configure this /etc/rc.firewall.bak: if [ -r "${firewall_type}" ]; then /etc/rc.firewall.bak: ${fwcmd} ${firewall_flags} ${firewall_type} /etc/ipfw.rules.bak:# firewall on the private network or from this gateway server /etc/#ipfw.rules#:# firewall on the private network or from this gateway se= rver On 5/11/05, Giorgos Keramidas <keramida@ceid.upatras.gr> wrote: > On 2005-05-11 08:15, Nicholas Henry <nicholas.henry@gmail.com> wrote: > > FreeBSD 5.3-RELEASE (GENERIC) #0: Fri Nov 5 04:19:18 UTC 2004 > > > > I have IPFW setup and get this message at boot time and mailed to root > > by when this script is run (/usr/libexec/save-entropy). > > > > firewall_enable: not found > > > > Anybody have any ideas why I get this message and how I can stop it? >=20 > Show us the following: >=20 > # grep -r firewall /etc >=20 > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.o= rg" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ee11ef4a050511061725adb2e9>