From owner-freebsd-questions@FreeBSD.ORG Thu Jan 12 21:28:16 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1EB7D16A422 for ; Thu, 12 Jan 2006 21:28:16 +0000 (GMT) (envelope-from fbsd_user@a1poweruser.com) Received: from mta13.adelphia.net (mta13.adelphia.net [68.168.78.44]) by mx1.FreeBSD.org (Postfix) with ESMTP id 45A6643D46 for ; Thu, 12 Jan 2006 21:28:15 +0000 (GMT) (envelope-from fbsd_user@a1poweruser.com) Received: from barbish ([69.172.31.117]) by mta13.adelphia.net (InterMail vM.6.01.05.02 201-2131-123-102-20050715) with SMTP id <20060112212814.IMEM8904.mta13.adelphia.net@barbish>; Thu, 12 Jan 2006 16:28:14 -0500 From: "fbsd_user" To: "Greg Barniskis" , "Martin McCormick" Date: Thu, 12 Jan 2006 16:28:09 -0500 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <43C6C55E.5000703@scls.lib.wi.us> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409 Cc: freebsd-questions@freebsd.org Subject: RE: Strange Failure Mode in FreeBSD 4.11 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: fbsd_user@a1poweruser.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Jan 2006 21:28:16 -0000 The firewall section of the handbook states that the rc.firewall file is an example. You really should read the firewall section of the handbook and use the working examples contained there. -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Greg Barniskis Sent: Thursday, January 12, 2006 4:09 PM To: Martin McCormick Cc: freebsd-questions@freebsd.org Subject: Re: Strange Failure Mode in FreeBSD 4.11 Martin McCormick wrote: > In > rc.firewall, there is a place where one can include a table of local > rules and that's where I am doing something wrong. The place in > rc.firewall reads: > > # filename - will load the rules in the given filename (full path required) This section of rc.firewall refers to valid values you can place in rc.conf for firewall_type. In rc.conf you can name any of the types defined in rc.firewall /or/ you can specify a file of your own (instead of rc.firewall). I don't think you can invoke rc.firewall /and/ another file you name. Well, OK, surely there is a way to do that, but that functionality is not the intent of this part of rc.firewall and rc.conf as I understand it. I'm sure that if you put your custom rules in a shell file that you can use rc or cron to load those rules at boot time; you'd just need to be careful with rule numbering, maybe use ipfw sets for rule ordering, etc. Maybe easier to just cp rc.firewall custom.ipfw, edit to your needs and use firewall_type="/etc/custom.ipfw" -- Greg Barniskis, Computer Systems Integrator South Central Library System (SCLS) Library Interchange Network (LINK) , (608) 266-6348 _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"