From owner-freebsd-questions@FreeBSD.ORG  Thu Aug  2 18:49:54 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id CF5F516A417
	for <freebsd-questions@freebsd.org>;
	Thu,  2 Aug 2007 18:49:54 +0000 (UTC) (envelope-from ml@t-b-o-h.net)
Received: from vjofn.tucs-beachin-obx-house.com
	(vjofn-pt.tunnel.tserv1.fmt.ipv6.he.net
	[IPv6:2001:470:1f00:ffff::5e5])
	by mx1.freebsd.org (Postfix) with ESMTP id 9192F13C480
	for <freebsd-questions@freebsd.org>;
	Thu,  2 Aug 2007 18:49:54 +0000 (UTC) (envelope-from ml@t-b-o-h.net)
Received: from himinbjorg.tucs-beachin-obx-house.com
	(cpe-68-175-8-11.hvc.res.rr.com [68.175.8.11]) (authenticated bits=0)
	by vjofn.tucs-beachin-obx-house.com (8.12.9/8.12.9) with ESMTP id
	l72InnuD081645; Thu, 2 Aug 2007 14:49:49 -0400 (EDT)
Received: from himinbjorg.tucs-beachin-obx-house.com
	(localhost.tucs-beachin-obx-house.com [127.0.0.1])
	by himinbjorg.tucs-beachin-obx-house.com (8.13.8/8.13.6) with ESMTP id
	l72IngPZ075943; Thu, 2 Aug 2007 14:49:42 -0400 (EDT)
	(envelope-from ml@t-b-o-h.net)
Received: (from tbohml@localhost)
	by himinbjorg.tucs-beachin-obx-house.com (8.13.8/8.13.6/Submit) id
	l72IngJF075942; Thu, 2 Aug 2007 14:49:42 -0400 (EDT)
	(envelope-from tbohml)
From: "Tuc at T-B-O-H.NET" <ml@t-b-o-h.net>
Message-Id: <200708021849.l72IngJF075942@himinbjorg.tucs-beachin-obx-house.com>
To: keramida@ceid.upatras.gr (Giorgos Keramidas)
Date: Thu, 2 Aug 2007 14:49:42 -0400 (EDT)
In-Reply-To: <20070802182120.GA18907@kobe.laptop>
X-Mailer: ELM [version 2.5 PL8]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: Firewall rules / Proper directory
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Aug 2007 18:49:54 -0000

> 
> On 2007-08-02 12:36, "Tuc at T-B-O-H.NET" <ml@t-b-o-h.net> wrote:
> > Hi,
> > I'm developing firewall rules for a machine, and I'm wondering what
> > the standard is for putting my version of an ipfw "firewall_script"?
> 
> I usually save my rules in '/etc/pf.conf' or '/etc/ipfw.rules'.
> 
> It's not like the '/etc' directory is a "please do not touch" area.
> 
	Thanks...

	I always DO try to keep things out of /etc if at all possible, I
regard that as "system space", and if I do "trespass" into it its usually
a file or directory previously allocated for that (/etc/rc.conf, /etc/mail/*).

	I've made a "/etc/rc.firewall.local".... I may rename it in the future
to stand out more, but we'll see how it goes for now.

			Thanks, Tuc