From owner-freebsd-questions  Wed Oct  3 21:58:26 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mailgate.rz.uni-karlsruhe.de (mailgate.rz.uni-karlsruhe.de [129.13.64.97])
	by hub.freebsd.org (Postfix) with ESMTP id A40E737B405
	for <freebsd-questions@freebsd.org>; Wed,  3 Oct 2001 21:58:20 -0700 (PDT)
Received: from wn4-marvin.wn4.uni-karlsruhe.de (wn4-marvin.wn4.uni-karlsruhe.de [172.20.12.211])
	by mailgate.rz.uni-karlsruhe.de with smtp (Exim 3.16 #1)
	id 15p0aR-0005Zo-00; Thu, 04 Oct 2001 06:58:19 +0200
Received: by wn4-marvin.wn4.uni-karlsruhe.de (sSMTP sendmail emulation); Thu, 4 Oct 2001 06:58:25 +0200
Date: Thu, 4 Oct 2001 06:58:25 +0200
From: "Benedikt Schmidt" <ry102@rz.uni-karlsruhe.de>
To: freebsd-questions@FreeBSD.ORG
Subject: Re: more rc.conf troubles
Message-ID: <20011004065825.C28910@wn4-marvin.wn4.uni-karlsruhe.de>
Mail-Followup-To: freebsd-questions@FreeBSD.ORG
References: <20011003204158.3b538dfd.nmace85@yahoo.com> <003501c14c6d$2919fdc0$14ce21c7@avatar.com> <20011003214710.318de708.nmace85@yahoo.com> <20011003205355.L8391@blossom.cjclark.org> <20011004004032.501488e2.nmace85@yahoo.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20011004004032.501488e2.nmace85@yahoo.com>
User-Agent: Mutt/1.3.22.1i
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Nathan Mace <nmace85@yahoo.com> wrote:
> i've included my ipfw.rules file...for some reason i tend to thing the
> problem is with it...i saw in the rc.firewall file that they kept using
> $fwcmd in front of the rules....do i have to use that in my rules file? 
> why?  what is it?  
firewall_script is a shell script executed by rc.network. ipfw(8) is 
the control program for ipfirewall(4). If you look at the default
/etc/rc.firewall, you can see that ${fwcmd} is set to "/sbin/ifw" or
"/sbin/ipfw -q" depending on the value of firewall_quiet in the rc.conf
files.

So you could change your "firewall script":

,----
| fwcmd="/sbin/ipfw"
| ${fwcmd} add 65000 pass all from any to any
`----

or just use the following lines in rc.conf.

,----[ /etc/rc.conf ]
| firewall_enable="YES"
| firewall_script="/etc/rc.firewall"
| firewall_type="open"
`----

-- 
Benedikt

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message