From owner-freebsd-current@FreeBSD.ORG  Fri Nov 23 13:00:09 2007
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 041D016A419
	for <freebsd-current@freebsd.org>; Fri, 23 Nov 2007 13:00:09 +0000 (UTC)
	(envelope-from joao@matik.com.br)
Received: from msrv.matik.com.br (msrv.matik.com.br [200.152.83.14])
	by mx1.freebsd.org (Postfix) with ESMTP id 53EC713C465
	for <freebsd-current@freebsd.org>; Fri, 23 Nov 2007 13:00:08 +0000 (UTC)
	(envelope-from joao@matik.com.br)
Received: from anb.matik.com.br (anb.matik.com.br [200.152.83.34])
	by msrv.matik.com.br (8.14.1/8.13.1) with ESMTP id lAND066l096432
	for <freebsd-current@freebsd.org>; Fri, 23 Nov 2007 11:00:07 -0200 (BRT)
	(envelope-from joao@matik.com.br)
From: JoaoBR <joao@matik.com.br>
Organization: Infomatik
To: freebsd-current@freebsd.org
Date: Fri, 23 Nov 2007 10:58:57 -0200
User-Agent: KMail/1.9.7
References: <4746670A.2010204@mcneil.com>
In-Reply-To: <4746670A.2010204@mcneil.com>
MIME-Version: 1.0
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Message-Id: <200711231058.57475.joao@matik.com.br>
X-Virus-Scanned: ClamAV version 0.91.2,
	clamav-milter version 0.91.2 on msrv.matik.com.br
X-Virus-Status: Clean
Subject: Re: 7-STABLE firewall gets flushed for both ipv4 and ipv6
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Nov 2007 13:00:09 -0000

On Friday 23 November 2007 03:37:14 Sean McNeil wrote:
> Now that ip6fw is deprecated and ipfw does both v4 and v6 there is a
> problem with setup of a firewall. If, for example, you have
>
> firewall_type=3D"some_file"
> ipv6_firewall_type=3D"OPEN"
>
> they both will not be setup. Instead, you will end up with just the
> rules from the one settup (depending on rcorder).
>
> In order to work around the issue, I have merged the firewall rules into
> one file and use
>
> firewall_type=3D"/etc/fw/firewall.rules"
> ipv6_firewall_type=3D"/etc/fw/firewall.rules"
>
> I don't know of any other way to do this properly.
>

probably you should use=20

firewall_script

for that and not firewall_type


=2D-=20

Jo=E3o







A mensagem foi scaneada pelo sistema de e-mail e pode ser considerada segura.
Service fornecido pelo Datacenter Matik  https://datacenter.matik.com.br