Date: Fri, 19 Sep 2003 13:07:41 +0200 From: Armand Passelac <apasselac@free.fr> To: "Michael L. Hostbaek" <mich@FreeBSD.org>, Antoine Jacoutot <ajacoutot@lphp.org>, freebsd-questions@FreeBSD.org Subject: Re: ipfw.conf is not read Message-ID: <20030919110741.GB799@freebie.freebsd.org> In-Reply-To: <20030919095239.GH32872@mich2.itxmarket.com> References: <3F6AC895.1040905@lphp.org> <20030919095239.GH32872@mich2.itxmarket.com>
next in thread | previous in thread | raw e-mail | index | archive | help
[---- On Fri, 19 Sep, 2003 at 11:52, Michael L. Hostbaek wrote: ----] > Antoine Jacoutot (ajacoutot) writes: > > > > firewall_enables="YES" > > firewall_script="/etc/ipfw.conf" > > firewall_logging="YES" > > > > try: > > firewall_enable="YES" > firewall_type="/etc/ipfw.conf" > > I don't know why, but that works for me. > > /mich > YES your problem is the *s* at the and of the firewall_enable line ;-) So the correct syntax is : firewall_enable="YES" firewall_script="/etc/ipfw.conf" # To avoid the display of rules during loading : firewall_quiet="YES" # To display the log (for log rules) in /var/log/security firewall_logging="YES" In your case, the *firewall_type* seems to not be necessary unless you use the default rc.firewall syntax. Moreover, according to me, a chmod 600 /etc/ipfw.conf seems to be better ;-) > > -- > Best Regards, > Michael L. Hostbaek > FreeBSD Committer - FreeBSD: The power to serve > mich@FreeBSD.org - http://www.FreeBSD.org > > */ PGP-key available upon request /* > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" [---- End of original mail from Michael L. Hostbaek ----] -- "No guts No glory" =] PASSELAC Armand [= ( @ @ ) Ingenieur Systemes-Reseaux & Securite ORBYTES INGENIERIE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030919110741.GB799>