From owner-freebsd-current@FreeBSD.ORG Sun Jun 15 20:45:40 2003 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2011437B405 for ; Sun, 15 Jun 2003 20:45:40 -0700 (PDT) Received: from alpha.siliconlandmark.com (alpha.siliconlandmark.com [209.69.98.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1D3AA43F93 for ; Sun, 15 Jun 2003 20:45:39 -0700 (PDT) (envelope-from andy@siliconlandmark.com) Received: from alpha.siliconlandmark.com (localhost [127.0.0.1]) h5G3jcAQ044695; Sun, 15 Jun 2003 23:45:38 -0400 (EDT) (envelope-from andy@siliconlandmark.com) Received: from localhost (andy@localhost)h5G3jbqG044692; Sun, 15 Jun 2003 23:45:37 -0400 (EDT) (envelope-from andy@siliconlandmark.com) X-Authentication-Warning: alpha.siliconlandmark.com: andy owned process doing -bs Date: Sun, 15 Jun 2003 23:45:36 -0400 (EDT) From: Andre Guibert de Bruet To: Kris Kennaway In-Reply-To: <20030616002804.GA33512@rot13.obsecurity.org> Message-ID: <20030615233848.D41111@alpha.siliconlandmark.com> References: <20030614074457.GA28169@rot13.obsecurity.org> <20030616002804.GA33512@rot13.obsecurity.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII cc: current@freebsd.org Subject: Re: rc.firewall not executed? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Jun 2003 03:45:40 -0000 On Sun, 15 Jun 2003, Kris Kennaway wrote: > On Sun, Jun 15, 2003 at 09:36:23AM -0400, Andre Guibert de Bruet wrote: > > > > On Sat, 14 Jun 2003, Kris Kennaway wrote: > > > > > I just noticed that my ipfw rules were not loaded the last time I > > > rebooted. My rc.conf is included below - has something changed > > > recently so that these settings are not enough? I didn't see anything > > > relevant in UPDATING. My /etc/firewall.conf exists and is readable > > > (and unchanged since 2002). > > > > > > Kris > > > > > > ---- > > > # $FreeBSD: src/etc/defaults/rc.conf,v 1.156 2002/08/30 13:01:42 hm Exp $ > > > hostname="citusc17.usc.edu" # Set this! > > > nisdomainname="cituscdomain" # Set to NIS domain if using NIS (or NO). > > > firewall_enable="YES" # Set to YES to enable firewall functionality > > > firewall_type="/etc/firewall.conf" # Firewall type (see /etc/rc.firewall) > > ^^^^^^^^^^^^^^^^^^ > > This is wrong. Set it to "UNKNOWN". There's firewall_script for that. > > Nope..read rc.firewall(5) :-) Well, I'm assuming that you're refering to the rc.firewall that's in section 8 of the manual; And yes, I stand corrected. But I still think that firewall_script is more intuitive... ;) Regards, > Andre Guibert de Bruet | Enterprise Software Consultant > > Silicon Landmark, LLC. | http://siliconlandmark.com/ >