From owner-freebsd-arch@FreeBSD.ORG Tue Jul 22 01:31:21 2003 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 69BAB37B401; Tue, 22 Jul 2003 01:31:21 -0700 (PDT) Received: from axl.seasidesoftware.co.za (axl.seasidesoftware.co.za [196.31.7.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id D69A643FAF; Tue, 22 Jul 2003 01:31:19 -0700 (PDT) (envelope-from sheldonh@starjuice.net) Received: from sheldonh by axl.seasidesoftware.co.za with local (Exim 4.20) id 19esYH-000LuZ-KB; Tue, 22 Jul 2003 10:31:17 +0200 Date: Tue, 22 Jul 2003 10:31:17 +0200 From: Sheldon Hearn To: David O'Brien Message-ID: <20030722083117.GC66789@starjuice.net> Mail-Followup-To: David O'Brien , freebsd-arch@FreeBSD.org References: <20030719171138.GA86442@dragon.nuxi.com> <20030721202314.GC21068@dragon.nuxi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030721202314.GC21068@dragon.nuxi.com> User-Agent: Mutt/1.5.4i Sender: Sheldon Hearn cc: freebsd-arch@FreeBSD.org Subject: Re: Things to remove from /rescue X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Jul 2003 08:31:21 -0000 On (2003/07/21 13:23), David O'Brien wrote: > You seem to have another email in mind than the one you've been replying > to. Please answer the question asked: > > If I did need to get to the Internet to get bits, what does ipfw do > for me that "sysctl net.inet.ip.fw.enable=0" doesn't? > > the reader should assume the user is using ipfw and not another packet > filter. What ipfw gives you that sysctl net.inet.ip.fw.enable=0 doesn't is the ability to arrange _limited_ Internet connectivity without opening up a hole so big a truck could drive through it. Ciao, Sheldon.