Date: Wed, 22 Apr 2026 19:20:08 -0400 From: MP <michaelparke74@gmail.com> To: freebsd-doc@freebsd.org Subject: Suggestion for Chapter 33 (firewalls) in FreeBSD handbook Message-ID: <3407444.aeNJFYEL58@debianlenovo>
index | next in thread | raw e-mail
I think that the "if firewall_type...configuration of the system" line in Chapter 33 of the Handbook under IPFW is confusing because it makes it seem like only the "client" or "simple" IPFW presets can be modified by the rules specified in /etc/rc.firewall. There is nothing mentioning that, for example, inbound ssh connections can be allowed on the workstation preset by using firewall_myservices and firewall_allowservices. Furthermore, there is nothing that I could easily find in the handbook or in /etc/rc.firewall that indicates that the modifications to the default rules should be added to /etc/rc.conf to persist across reboots. I think that there should be something in the handbook that says something like "configuring something like allowing inbound ssh connections to the workstation preset can be done by adding 'firewall_myservices="ssh"' and 'firewall_allowservices="any"' as found in /etc/rc.firewall to /etc/rc.conf" would be helpful. Or there at least could be something indicating that all presets can be modified by adding rules found in /etc/rc.firewall to /etc/ rc.conf.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3407444.aeNJFYEL58>