Date: Fri, 29 Jun 2001 23:00:43 +0100 From: Richard Smith <rdls@rdls.net> To: Kelvin Ng Chee Hoong <nchee_hoong@pacific.net.sg> Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@freebsd.org> Subject: Re: Add new entry of firewall Message-ID: <20010629230042.A967@gaia.home.rdls.net> In-Reply-To: <3B3C48E9.736B8175@pacific.net.sg>; from nchee_hoong@pacific.net.sg on Fri, Jun 29, 2001 at 05:22:49PM %2B0800 References: <3B3C48E9.736B8175@pacific.net.sg>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jun 29, 2001 at 05:22:49PM +0800, Kelvin Ng Chee Hoong wrote: > Hi ; > I've re-compiled to kernel to include IPFIREWALL options . The > firewall is rejects all packets by default . As such , I've added new > entry of firewall rule to allow certain sources allow forwarding to the > specific destination. But when I reboot the system , my new entry of > firewall rule disappear . It uses the default entry which rejects all > packets after reboot. As such , I unable ssh to my FreeBSD when I reboot > the system . I'm sure that I've enabled FIREWALL_ENABLE in /etc/rc.conf > > My question , how do I save new entry to firewall table ? When I > reboot the system , I want the firewall fetchs my added entry as part of > firewall rule . > Please advise . You need to add something like the following to your /etc/rc.conf file: firewall_enable="YES" firewall_type="client" This will cause the the firewall rules to be loaded from /etc/rc.firewall. Now all you need to do is customize the "client" section of /etc/rc.firewall. -- Richard Smith Network Systems Director Satamatics Ltd Green Lane, Tewkesbury, GL20 8HD, United Kingdom Tel: +44 1684 278610 Fax: +44 1684 278611 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010629230042.A967>