Date: Thu, 29 Mar 2018 04:51:08 +0000 (UTC) From: Marcelo Araujo <araujo@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-11@freebsd.org Subject: svn commit: r331728 - in stable/11/etc: . rc.d Message-ID: <201803290451.w2T4p8NK035072@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: araujo Date: Thu Mar 29 04:51:07 2018 New Revision: 331728 URL: https://svnweb.freebsd.org/changeset/base/331728 Log: MFC r329817: The firewall_type is ignored if not set in rc.conf or rc.conf.local, after r190575 there is an option to call rc.firewall with the firewall_type passed in as an argument. Submitted by: David P. Discher <dpd@dpdtech.com> Sponsored by: iXsystems Inc. Differential Revision: https://reviews.freebsd.org/D14286 Modified: stable/11/etc/rc.d/ipfw stable/11/etc/rc.firewall Directory Properties: stable/11/ (props changed) Modified: stable/11/etc/rc.d/ipfw ============================================================================== --- stable/11/etc/rc.d/ipfw Thu Mar 29 04:41:45 2018 (r331727) +++ stable/11/etc/rc.d/ipfw Thu Mar 29 04:51:07 2018 (r331728) @@ -40,7 +40,11 @@ ipfw_start() { local _firewall_type - _firewall_type=$1 + if [ -n "${1}" ]; then + _firewall_type=$1 + else + _firewall_type=${firewall_type} + fi # set the firewall rules script if none was specified [ -z "${firewall_script}" ] && firewall_script=/etc/rc.firewall Modified: stable/11/etc/rc.firewall ============================================================================== --- stable/11/etc/rc.firewall Thu Mar 29 04:41:45 2018 (r331727) +++ stable/11/etc/rc.firewall Thu Mar 29 04:51:07 2018 (r331728) @@ -112,12 +112,20 @@ setup_ipv6_mandatory() { ${fwcmd} add pass ipv6-icmp from any to any icmp6types 2,135,136 } +. /etc/rc.subr +. /etc/network.subr + if [ -n "${1}" ]; then firewall_type="${1}" fi +if [ -z "${firewall_rc_config_load}" ]; then + load_rc_config ipfw +else + for i in ${firewall_rc_config_load}; do + load_rc_config $i + done +fi -. /etc/rc.subr -. /etc/network.subr afexists inet6 ipv6_available=$?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201803290451.w2T4p8NK035072>