From owner-freebsd-doc Fri Sep 27 9:20: 7 2002 Delivered-To: freebsd-doc@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 03EBE37B401 for ; Fri, 27 Sep 2002 09:20:05 -0700 (PDT) Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id B4B8A43E86 for ; Fri, 27 Sep 2002 09:20:04 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.12.6/8.12.6) with ESMTP id g8RGK4Co061365 for ; Fri, 27 Sep 2002 09:20:04 -0700 (PDT) (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.6/8.12.6/Submit) id g8RGK4U6061364; Fri, 27 Sep 2002 09:20:04 -0700 (PDT) Date: Fri, 27 Sep 2002 09:20:04 -0700 (PDT) Message-Id: <200209271620.g8RGK4U6061364@freefall.freebsd.org> To: freebsd-doc@FreeBSD.org Cc: From: Hiten Pandya Subject: Re: docs/41807: natd -punch_fw "bug" Reply-To: Hiten Pandya Sender: owner-freebsd-doc@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The following reply was made to PR docs/41807; it has been noted by GNATS. From: Hiten Pandya To: bug-followup@FreeBSD.org Cc: Subject: Re: docs/41807: natd -punch_fw "bug" Date: Fri, 27 Sep 2002 12:10:37 -0400 --/04w6evG8XlLl3ft Content-Type: text/plain; charset=us-ascii Content-Disposition: inline I am providing a delta, to add the "first" part of the "Fix". Providing two line fixes is not always good, but it has come to my attention that this PR has not been touched for a while, yet the solution is simple; for whatever reasons ... On that note, I do not know about the second part of the "Fix" (i.e. about the keep-state stuff). Maybe someone more knowledgeable in this area of FreeBSD can comment on this. Patch also available at: http://www.unixdaemons.com/~hiten/work/diffs/natd.8.patch -- Hiten Pandya http://www.unixdaemons.com/~hiten hiten@unixdaemons.com, hiten@uk.FreeBSD.org, hiten@xMach.org PGP: http://pgp.mit.edu:11371/pks/lookup?search=Hiten+Pandya&op=index --/04w6evG8XlLl3ft Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename="natd.8.patch" Index: natd.8 =================================================================== RCS file: /home/ncvs/src/sbin/natd/natd.8,v retrieving revision 1.55 diff -u -r1.55 natd.8 --- natd.8 2002/08/13 14:10:36 1.55 +++ natd.8 2002/09/27 15:54:17 @@ -464,6 +464,10 @@ .Ar basenumber will be used for punching firewall holes. The range will be cleared for all rules on startup. +.Pp +.Sy NOTE : +When the kernel securelevel is 3, this option will have +no effect. .It Fl log_ipfw_denied Log when a packet cannot be re-injected because an .Xr ipfw 8 --/04w6evG8XlLl3ft-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message