From owner-freebsd-questions Thu Oct 24 23:31:33 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6588537B401; Thu, 24 Oct 2002 23:31:32 -0700 (PDT) Received: from sccimhc02.insightbb.com (sccimhc02.insightbb.com [63.240.76.164]) by mx1.FreeBSD.org (Postfix) with ESMTP id D385643E42; Thu, 24 Oct 2002 23:31:31 -0700 (PDT) (envelope-from bryanc2000@insightbb.com) Received: from insightbb.com ([12.222.162.255]) by sccimhc02.insightbb.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with SMTP id <20021025063131.KLHR1063.sccimhc02.insightbb.com@insightbb.com>; Fri, 25 Oct 2002 06:31:31 +0000 Date: Fri, 25 Oct 2002 01:31:31 -0500 From: Bryan Cassidy To: Adam Weinberger Cc: freebsd-questions@freebsd.org Subject: Re: Whats the deal? Message-Id: <20021025013131.13ddf403.bryanc2000@insightbb.com> In-Reply-To: <20021025062905.GC70503@vectors.cx> References: <20021025005639.507fd4a1.bryanc2000@insightbb.com> <20021025062905.GC70503@vectors.cx> X-Mailer: Sylpheed version 0.8.5 (GTK+ 1.2.10; i386-portbld-freebsd4.6.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, 24 Oct 2002 23:29:05 -0700 Adam Weinberger wrote: > from ipfirewall(4): > There is one rule that always exists, rule number 65535. This rule nor- > mally causes all packets to be dropped. Hence, any packet which does not > match a lower numbered rule will be dropped. However, a kernel compile > time option IPFIREWALL_DEFAULT_TO_ACCEPT allows the administrator to > change this fixed rule to permit everything. > > - -Adam So I should add option IPFIREWALL_DEFAULT_TO_ACCEPT or option IPFIREWALL_DEFAULT_TO_ACCEPT=?? to the kernel? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message