Date: Thu, 4 Oct 2001 00:40:32 -0400 From: Nathan Mace <nmace85@yahoo.com> To: cjclark@alum.mit.edu Cc: kory@avatar.com, freebsd-questions@FreeBSD.ORG Subject: Re: more rc.conf troubles Message-ID: <20011004004032.501488e2.nmace85@yahoo.com> In-Reply-To: <20011003205355.L8391@blossom.cjclark.org> References: <20011003204158.3b538dfd.nmace85@yahoo.com> <003501c14c6d$2919fdc0$14ce21c7@avatar.com> <20011003214710.318de708.nmace85@yahoo.com> <20011003205355.L8391@blossom.cjclark.org>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] ok i changed my /etc/rc.conf file to point at the ipfw.rules file...at bootup it says that it loads the firewall rules ok...but it doesn't. and for some reason dmesg isn't showing all of my bootup info...when it boots up alot of the text is in 'bold' but some of it isn't....dmesg only prints out the bold part...so i can't tell you for sure what ipfw is saying because i can't read that fast ;) i've included my ipfw.rules file...for some reason i tend to thing the problem is with it...i saw in the rc.firewall file that they kept using $fwcmd in front of the rules....do i have to use that in my rules file? why? what is it? thanks for your time.... nathan On Wed, 3 Oct 2001 20:53:55 -0700 "Crist J. Clark" <cristjc@earthlink.net> wrote: > On Wed, Oct 03, 2001 at 09:47:10PM -0400, Nathan Mace wrote: > > On Wed, 3 Oct 2001 17:40:26 -0700 > > "Kory Hamzeh" <kory@avatar.com> wrote: > > > > > Not sure. Do you have firewalls link in the kernel maybe? > > > > > > i'm not sure what you mean...yes i did compile it into the > kernel...i > > guess that would be a good reason for it always starting huh? > > > > but even then it doesn't explain why it doesn't add the rule that is > in > > the /root/ipfw.rules file?? > > If it's in the kernel, the firewall is just there, always. > > There are two good reasons you are not getting your rules in after > looking at your rc.conf(5). First, > > firewall_enable="NO" > > The start up scripts will not try to load any rules. Second, > > firewall_script="/etc/rc.firewall" > firewall_type="/root/ipfw.rules" > > You probably mean, > > firewall_script="/root/ipfw.rules" > > -- > Crist J. Clark cjclark@alum.mit.edu > cjclark@jhu.edu > cjc@freebsd.org [-- Attachment #2 --] # -- sysinstall generated deltas -- # # Created: Tue Sep 18 00:35:41 2001 # Enable network daemons for user convenience. # This file now contains just the overrides from /etc/defaults/rc.conf # please make all changes to this file. hostname="cheech.uchaswv.edu" ifconfig_xl0="DHCP" inetd_enable="YES" kern_securelevel_enable="NO" linux_enable="YES" moused_enable="YES" saver="fire" sendmail_enable="NO" sshd_enable="YES" usbd_enable="YES" # -- sysinstall generated deltas -- # sendmail_enable="NO" portmap_enable="NO" # -- sysinstall generated deltas -- # defaultrouter="172.16.129.129" hostname="cheech.uchaswv.edu" #firewall--ipfw firewall_enable="YES" firewall_script="/root/ipfw.rules" firewall_quiet="NO" log_in_vain="YES" firewall_logging_enable="YES" icmp_drop_redirect="YES" # -- sysinstall generated deltas -- # ifconfig_xl0="inet 172.16.0.7 netmask 255.255.0.0" defaultrouter="172.16.129.129" hostname="cheech.uchaswv.edu" [-- Attachment #3 --] 65534 allow ip from any to any
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011004004032.501488e2.nmace85>