From owner-freebsd-stable@FreeBSD.ORG Tue Nov 23 11:43:48 2004 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F2DF216A4CE for ; Tue, 23 Nov 2004 11:43:47 +0000 (GMT) Received: from supermail.ispro.net.tr (supermail.ispro.net.tr [217.21.68.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1F70243D46 for ; Tue, 23 Nov 2004 11:43:45 +0000 (GMT) (envelope-from yurtesen-dated-1102074220.059d52@ispro.net.tr) Received: (qmail 46910 invoked by uid 89); 23 Nov 2004 11:43:41 -0000 Received: from [84.248.223.210] (dsl-aur-wwd2.dial.inet.fi [84.248.223.210]) by supermail.ispro.net.tr (tmda-ofmipd) with ESMTP; Tue, 23 Nov 2004 13:43:36 +0200 (EET) Message-ID: <41A3AEFA.1050507@ispro.net.tr> Date: Tue, 23 Nov 2004 13:43:22 -0800 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.1) Gecko/20040707 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Simon Fishley References: In-Reply-To: Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Delivery-Agent: TMDA/1.0.2 (Bold Forbes) From: Evren Yurtesen X-Primary-Address: yurtesen@ispro.net.tr cc: freebsd-stable@freebsd.org Subject: Re: Newbie Port Filter Question on 4.10stable X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Nov 2004 11:43:48 -0000 Hi, I think if your firewall is normally working fine. You can use #sh /etc/rc.firewall & (notice the & for putting it background) Because if you have last default rule to deny everything, the rc.firewall script first flushes every rule and if you are connected via ssh etc. you would get disconnected immediately and execution of rc.firewall stops, so it is not able to load the new rules. If it is on background then it will continue working till the end and put the new rules into action. Please let me know if you find any better solution :) I always use #sh rc.firewall & but there is always a better way :p Evren Simon Fishley wrote: > Hi All > > Very new to FreeBSD and google has not proved helpful for once. Running > 4.10Stable and I would like to allow traffic on port 20 on my server and I > assumed /etc/rc.firewall was the place to do so. I added a line in the file > in the same format as the rule allowing port 21 traffic but was not sure how > to restart the firewall. #sh /etc/rc.firewall was a bad idea and totally > shutdown all traffic. > > Can anyone point me to a clear resource on what I should do to start, stop > and flush the port filter rules and whether or not I was working in the > correct place to begin with. > > Thanks in advance > Simon > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"