From owner-freebsd-questions@FreeBSD.ORG Fri Sep 19 04:09:15 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id B99A616A4B3; Fri, 19 Sep 2003 04:09:15 -0700 (PDT) Received: from SMT02002.global-asp.net (SMT02002.global-asp.net [194.51.152.254]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8D94843FDF; Fri, 19 Sep 2003 04:09:14 -0700 (PDT) (envelope-from apasselac@free.fr) Received: from smt02003.global-asp.net (localhost [127.0.0.1]) by SMT02002.global-asp.net (Postfix) with ESMTP id 06B7F234C3; Fri, 19 Sep 2003 13:09:12 +0200 (CEST) Received: from freebie.freebsd.org (Mix-Poitiers-111-2-116.w80-9.abo.wanadoo.fr [80.9.24.116]) by smt02003.global-asp.net (Postfix) with ESMTP id 1D9362FA0B; Fri, 19 Sep 2003 13:09:13 +0200 (CEST) Received: from freebie.freebsd.org (freebie.freebsd.org [127.0.0.1]) by freebie.freebsd.org (8.12.9/8.12.9) with ESMTP id h8JB7lBJ001011; Fri, 19 Sep 2003 13:07:47 +0200 (CEST) (envelope-from kmaster@freebie.freebsd.org) Received: (from kmaster@localhost) by freebie.freebsd.org (8.12.9/8.12.9/Submit) id h8JB7fNL001008; Fri, 19 Sep 2003 13:07:41 +0200 (CEST) Date: Fri, 19 Sep 2003 13:07:41 +0200 From: Armand Passelac To: "Michael L. Hostbaek" , Antoine Jacoutot , freebsd-questions@FreeBSD.org Message-ID: <20030919110741.GB799@freebie.freebsd.org> References: <3F6AC895.1040905@lphp.org> <20030919095239.GH32872@mich2.itxmarket.com> Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-15 Content-Disposition: inline In-Reply-To: <20030919095239.GH32872@mich2.itxmarket.com> Subject: Re: ipfw.conf is not read X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 19 Sep 2003 11:09:15 -0000 [---- On Fri, 19 Sep, 2003 at 11:52, Michael L. Hostbaek wrote: ----] > Antoine Jacoutot (ajacoutot) writes: > > > > firewall_enables="YES" > > firewall_script="/etc/ipfw.conf" > > firewall_logging="YES" > > > > try: > > firewall_enable="YES" > firewall_type="/etc/ipfw.conf" > > I don't know why, but that works for me. > > /mich > YES your problem is the *s* at the and of the firewall_enable line ;-) So the correct syntax is : firewall_enable="YES" firewall_script="/etc/ipfw.conf" # To avoid the display of rules during loading : firewall_quiet="YES" # To display the log (for log rules) in /var/log/security firewall_logging="YES" In your case, the *firewall_type* seems to not be necessary unless you use the default rc.firewall syntax. Moreover, according to me, a chmod 600 /etc/ipfw.conf seems to be better ;-) > > -- > Best Regards, > Michael L. Hostbaek > FreeBSD Committer - FreeBSD: The power to serve > mich@FreeBSD.org - http://www.FreeBSD.org > > */ PGP-key available upon request /* > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" [---- End of original mail from Michael L. Hostbaek ----] -- "No guts No glory" =] PASSELAC Armand [= ( @ @ ) Ingenieur Systemes-Reseaux & Securite ORBYTES INGENIERIE