From owner-freebsd-questions  Thu Mar  6  7:14:11 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3B23A37B401
	for <freebsd-questions@freebsd.org>; Thu,  6 Mar 2003 07:14:10 -0800 (PST)
Received: from mired.org (ip68-97-54-220.ok.ok.cox.net [68.97.54.220])
	by mx1.FreeBSD.org (Postfix) with SMTP id 252AD43F75
	for <freebsd-questions@freebsd.org>; Thu,  6 Mar 2003 07:14:09 -0800 (PST)
	(envelope-from mwm-dated-1047395648.80e4bf@mired.org)
Received: (qmail 59858 invoked from network); 6 Mar 2003 15:14:08 -0000
Received: from localhost.mired.org (HELO guru.mired.org) (127.0.0.1)
  by localhost.mired.org with SMTP; 6 Mar 2003 15:14:08 -0000
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15975.26047.929143.785792@guru.mired.org>
Date: Thu, 6 Mar 2003 09:14:07 -0600
To: Josh Brooks <user@mail.econolodgetulsa.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: loading ipfw module without default-deny
In-Reply-To: <20030306031748.W94847-100000@mail.econolodgetulsa.com>
References: <20030306031748.W94847-100000@mail.econolodgetulsa.com>
X-Mailer: VM 7.07 under 21.1 (patch 14) "Cuyahoga Valley" XEmacs Lucid
X-face: "5Mnwy%?j>IIV\)A=):rjWL~NB2aH[}Yq8Z=u~vJ`"(,&SiLvbbz2W`;
	h9L,Yg`+vb1>RG% *h+%X^n0EZd>TM8_IB;a8F?(Fb"lw'IgCoyM.[Lg#r\
From: Mike Meyer <mwm-dated-1047395648.80e4bf@mired.org>
X-Delivery-Agent: TMDA/0.70 (Pensive)
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

In <20030306031748.W94847-100000@mail.econolodgetulsa.com>, Josh Brooks <user@mail.econolodgetulsa.com> typed:
> I want to:
> kldload ipfw.ko
> but I am not near the physical machine, and cannot type in an allow rule
> after loading the module - by default all traffic will be denied.
> How can I load the ipfw.ko module but not knock myself off the network ?

How about a shell script that does the kldload and then the ipfw add
to allow all traffic from your machine? That's how I used to reload
ifpw rules remotely. Do nohup the shell script when you run it.

	<mike
-- 
Mike Meyer <mwm@mired.org>		http://www.mired.org/consulting.html
Independent WWW/Perforce/FreeBSD/Unix consultant, email for more information.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message