Date: Fri, 31 May 2002 11:23:52 +0200 From: Holger Kipp <holger.kipp@alogis.com> To: JJ Behrens <jj@nttmcl.com> Cc: FreeBSD-STABLE Mailing List <freebsd-stable@FreeBSD.ORG>, freebsd-questions@FreeBSD.ORG Subject: Re: Server won't boot after recompile the kernel with ipfw support Message-ID: <3CF74128.708F4612@alogis.com> References: <20020528142640.A22370@phxby.com> <20020528133316.S16405-100000@boris.st.hmc.edu> <20020528150941.A24676@phxby.com> <200205282131.g4SLVmYZ024980@apollo.backplane.com> <3CF48FB4.E82525FE@alogis.com> <20020530144048.A24912@alicia.nttmcl.com>
next in thread | previous in thread | raw e-mail | index | archive | help
JJ Behrens wrote: > > > To point out the obvious: put the firewall rules in "/etc/ipfw.conf", > > if firewall_type contains a filename. If firewall_type is the name > > of a configuration, edit rc.firewall. > > Hmm, very interesting. I can't seem to find this (i.e. pre-made > firewall_type's) documented in the handbook. Am I missing something, or should > I submit a PR? I'd say you're missing something <g>. It is all described within /etc/defaults/rc.conf and /etc/rc.firewall. You might also want to look at 'man firewall', as has been pointed out already. Regards, Holger --- 8< ----------------- snip ----------------------------------------------- fgrep firewall /etc/defaults/rc.conf gives (among others): ### Basic network and firewall/security options: ### firewall_enable="NO" # Set to YES to enable firewall functionality firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall firewall_type="UNKNOWN" # Firewall type (see /etc/rc.firewall) Firewall type (see /etc/rc.firewall) gives: ############ # Define the firewall type in /etc/rc.conf. Valid values are: # open - will allow anyone in # client - will try to protect just this machine # simple - will try to protect a whole network # closed - totally disables IP services except via lo0 interface # UNKNOWN - disables the loading of firewall rules. # filename - will load the rules in the given filename (full path required) # # For ``client'' and ``simple'' the entries below should be customized # appropriately. -- Holger Kipp, Dipl.-Math., Systemadministrator | alogis AG Fon: +49 (0)30 / 43 65 8 - 114 | Berliner Strasse 26 Fax: +49 (0)30 / 43 65 8 - 214 | D-13507 Berlin Tegel email: holger.kipp@alogis.com | http://www.alogis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3CF74128.708F4612>