Date: Sat, 11 Jan 2003 19:31:10 -0800 (PST) From: Matt Dillon <dillon@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sbin/ipfw ipfw.8 ipfw2.c Message-ID: <200301120331.h0C3VA2H040455@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
dillon 2003/01/11 19:31:10 PST
Modified files:
sbin/ipfw ipfw.8 ipfw2.c
Log:
It turns out that we do not need to add a new ioctl to unbreak a
default-to-deny firewall. Simply turning off IPFW via a preexisting
sysctl does the job. To make it more apparent (since nobody picked up
on this in a week's worth of flames), the boolean sysctl's have been
integrated into the /sbin/ipfw command set in an obvious and straightforward
manner. For example, you can now do 'ipfw disable firewall' or
'ipfw enable firewall'. This is far easier to remember then the
net.inet.ip.fw.enable sysctl.
Reviewed by: imp
MFC after: 3 days
Revision Changes Path
1.119 +16 -0 src/sbin/ipfw/ipfw.8
1.21 +27 -0 src/sbin/ipfw/ipfw2.c
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200301120331.h0C3VA2H040455>