Date: Fri, 21 Feb 2003 20:24:54 +0100 From: Roman Neuhauser <neuhauser@bellavista.cz> To: Jim Xochellis <dxoch@escape.gr> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Problems with in the ipf setup in an FreeBSD 4.7 router Message-ID: <20030221192454.GQ329@freepuppy.bellavista.cz> In-Reply-To: <3E566B12.5DEE5B21@escape.gr> References: <3E566B12.5DEE5B21@escape.gr>
next in thread | previous in thread | raw e-mail | index | archive | help
# dxoch@escape.gr / 2003-02-21 20:08:17 +0200:
> I have compiled and installed a new kernel with ipf support and then I
> put the following lines inside my rc.conf file:
>
> ipfilter_enable="YES"
> ipfilter_program="/sbin/ipf -Fa -f"
> ipfilter_rules="/etc/ipf.rules"
> ipfilter_flags=""
remove the three lines above, leaving only ipfilter_enable="YES"
in rc.conf.
> The problem is that, when I boot, ipf does not work. It seems like is
> not using the rules.
>
> If I enter "ipf -Fa -f /etc/ipf.rules" from the command line, then it
> starts working as expected.
if you look at /etc/rc.network you'll see why:
${ipfilter_program:-/sbin/ipf} -Fa -f \
"${ipfilter_rules}" ${ipfilter_flags}
your settings make it:
/sbin/ipf -Fa -f -Fa -f /etc/ipf.rules
--
If you cc me or remove the list(s) completely I'll most likely ignore
your message. see http://www.eyrie.org./~eagle/faqs/questions.html
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030221192454.GQ329>