Date: Mon, 28 Jan 2002 13:32:32 -0700 From: Chad David <davidc@acns.ab.ca> To: Nate Williams <nate@yogotech.com> Cc: Erik Trulsson <ertr1013@student.uu.se>, C J Michaels <cjm2@earthling.net>, charon@seektruth.org, dsyphers@uchicago.edu, imp@village.org, stable@FreeBSD.ORG Subject: Re: Firewall config non-intuitiveness Message-ID: <20020128133232.C66369@colnta.acns.ab.ca> In-Reply-To: <15445.44102.288461.155113@caddis.yogotech.com>; from nate@yogotech.com on Mon, Jan 28, 2002 at 12:53:42PM -0700 References: <200201271757.g0RHvTF12944@midway.uchicago.edu> <1617.216.153.202.59.1012240332.squirrel@www1.27in.tv> <20020128192930.GA86720@student.uu.se> <15445.44102.288461.155113@caddis.yogotech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 28, 2002 at 12:53:42PM -0700, Nate Williams wrote: > > Note that "do not enable firewall" (which is implied by firewall_enable="NO") > > is *not* equivalent to "disable firewall". > > Maybe we're having an English language question. > > If something isn't enabled, doesn't that imply that it's disabled? Last > I checked, enabled/disabled were binary operations. > > If I enable the clutch in my car, my car moves (assuming it's in gear). > If I disable it, the power is no longer going to the drive wheels. True, but the real question is what does firewall_enable actually enable and disable? In its current state it enables and disables the adding of rules as defined by firewall_type (rc.conf(5)). The docs could be a little better about what will happen if you set firewall_enable="NO", and have it compiled into your kernel. -- Chad David davidc@acns.ab.ca www.FreeBSD.org davidc@freebsd.org ACNS Inc. Calgary, Alberta Canada Fourthly, The constant breeders, beside the gain of eight shillings sterling per annum by the sale of their children, will be rid of the charge of maintaining them after the first year. - Johnathan Swift To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020128133232.C66369>