From owner-freebsd-questions Thu Jan 2 14:10:11 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id OAA07248 for questions-outgoing; Thu, 2 Jan 1997 14:10:11 -0800 (PST) Received: from vdp01.vailsystems.com (vdp01.vailsystems.com [207.152.98.18]) by freefall.freebsd.org (8.8.4/8.8.4) with ESMTP id OAA07212 for ; Thu, 2 Jan 1997 14:09:54 -0800 (PST) Received: from crocodile.vale.com (crocodile [204.117.217.147]) by vdp01.vailsystems.com (8.8.3/8.7.3) with ESMTP id QAA27100; Thu, 2 Jan 1997 16:09:00 -0600 (CST) Received: from jaguar (jaguar.vale.com [204.117.217.146]) by crocodile.vale.com (8.8.3/8.7.3) with SMTP id MAA03342; Thu, 2 Jan 1997 12:11:42 -0600 (CST) Message-ID: <32CBFA5E.13F2@vailsys.com> Date: Thu, 02 Jan 1997 12:11:42 -0600 From: Hal Snyder Reply-To: hal@vailsys.com Organization: Vail Systems, Inc. X-Mailer: Mozilla 3.0 (WinNT; I) MIME-Version: 1.0 To: Mike Kercher CC: questions@freebsd.org Subject: Re: ipfw Question References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Mike Kercher wrote: > I just setup ipfw for the first time and things seem to be working ok so > far. The question is, when the box reboots, are all of the chain entries > lost? If so, can I add them to /etc/rc.local to have them reinstated upon > reboot? Your chain entries are lost if you didn't edit them into the setup scripts. The usual way of doing this is to: 1. edit /etc/rc.firewall to suit your needs 2. set firewall=YES in /etc/sysconfig At startup, /etc/rc calls /etc/sysconfig and /etc/netstart, which calls /etc/rc.firewall. This is at least true for FreeBSD version 2.1.5-R.