From owner-freebsd-questions Sun Aug 5 7:45:25 2001 Delivered-To: freebsd-questions@freebsd.org Received: from lucifer.fuzion.za.org (pta-dial-196-31-185-63.mweb.co.za [196.31.185.63]) by hub.freebsd.org (Postfix) with ESMTP id 66B9D37B401 for ; Sun, 5 Aug 2001 07:45:18 -0700 (PDT) (envelope-from psyv@sec-it.net) Received: from localhost (psyv@localhost) by lucifer.fuzion.za.org (8.11.3/8.11.3) with ESMTP id f75El0o14546; Sun, 5 Aug 2001 16:47:01 +0200 (SAST) (envelope-from psyv@sec-it.net) X-Authentication-Warning: lucifer.fuzion.za.org: psyv owned process doing -bs Date: Sun, 5 Aug 2001 16:46:57 +0200 (SAST) From: The Psychotic Viper X-Sender: psyv@lucifer.fuzion.za.org To: Kjell Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfilter ignores /etc/ipf.rules at boot In-Reply-To: <3B6D0B53.2121.C34EBC@localhost> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, On Sun, 5 Aug 2001, Kjell wrote: > dmesg shows: IP filter initialized, default = block all, Logging = enabled > and farther down: IP filter already initialized self evident, IPFilter support has been compiled into your kernel and has already been init'd. This is an older method of using ipfilter and it has been recommended that support be loaded as a module. (Read the IPFilter docs on how to do that). Or just add ipfilter_flags="" to ur /etc/rc.conf, but the kernel module is recommended. > The ipfstat command shows: empty list for ipfilter (in/out) > > Any hints on how things should be set up so the rules in the > "/etc/ipf.rules" file should be read? well just ensure u have the following in /etc/rc.conf ipfilter_enable="YES" ipfilter_flags="" > > Thanks and regards from Kjell (LA3SG) PsyV To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message