Date: Mon, 13 Oct 2014 10:30:56 -0700 From: Adrian Chadd <adrian@freebsd.org> To: =?UTF-8?Q?Olivier_Cochard=2DLabb=C3=A9?= <olivier@cochard.me> Cc: "freebsd-current@freebsd.org" <freebsd-current@freebsd.org> Subject: Re: Proposal for adding "firewall_myservices_udp" in etc/rc.conf Message-ID: <CAJ-VmomZok4vUO2TWbVySvWe1nEa%2BivTG2CrDXZmKiAZoiMzzQ@mail.gmail.com> In-Reply-To: <CA%2Bq%2BTcpq=v%2BrUBiX_0B5O580gWVLatM2nPjyOpsGWRcGVJ7%2B2A@mail.gmail.com> References: <CA%2Bq%2BTcpq=v%2BrUBiX_0B5O580gWVLatM2nPjyOpsGWRcGVJ7%2B2A@mail.gmail.com>
index | next in thread | previous in thread | raw e-mail
Please add a myservices for IP protocols. I'd like to allow things like GRE so PPTP works. (This is great - now I can have tftp work through the rc.conf firewall!0 Thanks! -a On 10 October 2014 13:38, Olivier Cochard-Labbé <olivier@cochard.me> wrote: > For a simple workstation, we can use this simple configuration in > /etc/rc.conf: > firewall_type="workstation" > firewall_enable="YES" > firewall_myservices="22,80" > firewall_allowservices="any" > > But the firewall_myservices allows only TCP services. > It's not possible to declare UDP services (like a torrent client). > > This patch propose to add UDP services by 2 changes: > 1. firewall_myservices became a deprecated alias, the new is > firewall_myservices_tcp > 2. A new firewall_myservices_udp variable is added. > > Patch attached to PR194292: > https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=194292 > > What do you think ? > _______________________________________________ > freebsd-current@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-current > To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAJ-VmomZok4vUO2TWbVySvWe1nEa%2BivTG2CrDXZmKiAZoiMzzQ>