Date: Sun, 27 Aug 2006 02:55:16 +0300 From: Giorgos Keramidas <keramida@ceid.upatras.gr> To: "J.D. Bronson" <jbronson@wixb.com> Cc: freebsd-questions@freebsd.org, Duane Hill <d.hill@yournetplus.com> Subject: Re: ipfilter on 6.1 Message-ID: <20060826235516.GA3421@gothmog.pc> In-Reply-To: <7.0.1.0.2.20060826185111.01970438@sixcompanies.com> References: <7.0.1.0.2.20060826150124.01982d10@sixcompanies.com> <20060826204015.GI1311@gothmog.pc> <7.0.1.0.2.20060826160530.01982d10@sixcompanies.com> <20060826220706.GC2666@gothmog.pc> <7.0.1.0.2.20060826170941.01982d10@sixcompanies.com> <20060826221904.GD2666@gothmog.pc> <7.0.1.0.2.20060826174612.01982d10@sixcompanies.com> <20060826233750.GA3300@gothmog.pc> <7.0.1.0.2.20060826185111.01970438@sixcompanies.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 2006-08-26 18:52, "J.D. Bronson" <jbronson@wixb.com> wrote: > At 06:37 PM 8/26/2006, Giorgos Keramidas wrote: > >Cool! If this is indeed the fix, let us know :) > > > >If you also feel like it and you are not limited by contract or > >other things, I'd be interested to see how you modified IP Filter > >to make it use a "block by default" policy. > > > >Regards, > >Giorgos > > This fixed it. WHEW! Great :) > Simply adding this to my own kernel: > > options IPFILTER > options IPFILTER_LOG > options IPFILTER_DEFAULT_BLOCK Ok this was what I wanted to make sure :) > then: > > # ipf -V > > ipf: IP Filter: v4.1.8 (416) > Kernel: IP Filter: v4.1.8 > Running: yes > Log Flags: 0 = none set > Default: block all, Logging: available > Active list: 0 > Feature mask: 0xa
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060826235516.GA3421>