From owner-freebsd-security Tue Jul 24 3:12:38 2001 Delivered-To: freebsd-security@freebsd.org Received: from infinitive.futureperfectcorporation.com (curie.sunesi.com [196.25.112.244]) by hub.freebsd.org (Postfix) with SMTP id 1CA5337B405 for ; Tue, 24 Jul 2001 03:12:33 -0700 (PDT) (envelope-from nbm@gerund.futureperfectcorporation.com) Received: (qmail 3422 invoked by uid 0); 24 Jul 2001 10:14:07 -0000 Received: from choke.sunesi.net (HELO gerund.futureperfectcorporation.com) (196.25.112.242) by infinitive.futureperfectcorporation.com with SMTP; 24 Jul 2001 10:14:07 -0000 Received: (qmail 24011 invoked by uid 1001); 24 Jul 2001 10:12:37 -0000 Date: Tue, 24 Jul 2001 12:12:37 +0200 From: Neil Blakey-Milner To: "Antoine Beaupre (LMC)" Cc: freebsd-security@FreeBSD.ORG Subject: Re: rc.firewall change comments request Message-ID: <20010724121237.A12846@mithrandr.moria.org> References: <3B5C8F47.5050300@lmc.ericsson.se> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3B5C8F47.5050300@lmc.ericsson.se>; from Antoine.Beaupre@ericsson.ca on Mon, Jul 23, 2001 at 04:55:35PM -0400 Organization: iTouch Labs X-Operating-System: FreeBSD 4.3-RELEASE i386 X-URL: http://mithrandr.moria.org/nbm/ Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon 2001-07-23 (16:55), Antoine Beaupre (LMC) wrote: > I find that using a custom ruleset is a pain in the current rc.firewall > setup. > > For example, since alternate setups are sourced using "ipfw" instead of > the shell, you do not have access to valuable variables and > conditionals, being limited to ipfw' syntax. You can use the '-p' option to ipfw to specify a preprocessor. The man page says a bit more. Neil -- Neil Blakey-Milner nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message