From owner-freebsd-doc@FreeBSD.ORG Mon May 10 02:30:17 2004 Return-Path: Delivered-To: freebsd-doc@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E389116A4CE for ; Mon, 10 May 2004 02:30:16 -0700 (PDT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 99C8043D46 for ; Mon, 10 May 2004 02:30:16 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) i4A9UGAA046097 for ; Mon, 10 May 2004 02:30:16 -0700 (PDT) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.11/8.12.11/Submit) id i4A9UGfU046077; Mon, 10 May 2004 02:30:16 -0700 (PDT) (envelope-from gnats) Resent-Date: Mon, 10 May 2004 02:30:16 -0700 (PDT) Resent-Message-Id: <200405100930.i4A9UGfU046077@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-doc@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Giorgos Keramidas Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1DAF016A4CE for ; Mon, 10 May 2004 02:28:36 -0700 (PDT) Received: from www.freebsd.org (www.freebsd.org [216.136.204.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id CFFE843D48 for ; Mon, 10 May 2004 02:28:35 -0700 (PDT) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.12.11/8.12.11) with ESMTP id i4A9ST0m041985 for ; Mon, 10 May 2004 02:28:29 -0700 (PDT) (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.12.11/8.12.11/Submit) id i4A9STqI041982; Mon, 10 May 2004 02:28:29 -0700 (PDT) (envelope-from nobody) Message-Id: <200405100928.i4A9STqI041982@www.freebsd.org> Date: Mon, 10 May 2004 02:28:29 -0700 (PDT) From: Giorgos Keramidas To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-2.3 Subject: docs/66442: [PATCH] proposed dialup-firewall article wording change X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 May 2004 09:30:17 -0000 >Number: 66442 >Category: docs >Synopsis: [PATCH] proposed dialup-firewall article wording change >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-doc >State: open >Quarter: >Keywords: >Date-Required: >Class: doc-bug >Submitter-Id: current-users >Arrival-Date: Mon May 10 02:30:16 PDT 2004 >Closed-Date: >Last-Modified: >Originator: Giorgos Keramidas >Release: 5-CURRENT >Organization: >Environment: >Description: Both paragraphs listed in the diff below start with "First". Surely one of them must be "second" :-) The rewording is probably suboptimal, but if anyone has a better idea about a way to keep the changes minimal and avoid repeatedly using the same word (First), go for it. >How-To-Repeat: >Fix: %% --- article.sgml.orig 2004-05-10 10:34:03.000000000 +0300 +++ article.sgml.new 2004-05-10 10:33:54.000000000 +0300 @@ -161,17 +161,17 @@ First, let's start with the basics of closed firewalling. Closed firewalling is based on the idea that everything is denied by default. The system administrator may then explicitly add rules for traffic that he or she would like to allow. Rules should be in the order of allow first, and then deny. The premise is that you add the rules for everything you would like to allow, and then everything else is automatically denied. - First off, let's create the directory where we will store our + Following that, let's create the directory where we will store our firewall rules. In this example, we'll use /etc/firewall. Change into the directory and edit the file fwrules as we specified in rc.conf. Please note that you can change this filename to anything you wish. This guide merely gives an example of a filename you may want to use. Now, let's look at a nicely commented sample firewall %% >Release-Note: >Audit-Trail: >Unformatted: