From owner-freebsd-ipfw Wed Apr 12 21:51:34 2000 Delivered-To: freebsd-ipfw@freebsd.org Received: from MailAndNews.com (MailAndNews.com [199.29.68.160]) by hub.freebsd.org (Postfix) with ESMTP id D771F37B629; Wed, 12 Apr 2000 21:51:31 -0700 (PDT) (envelope-from mheffner@mailandnews.com) Received: from muriel.penguinpowered.com [208.138.199.76] (mheffner@mailandnews.com); Thu, 13 Apr 2000 00:51:29 -0400 X-WM-Posted-At: MailAndNews.com; Thu, 13 Apr 00 00:51:29 -0400 Content-Length: 870 Message-ID: X-Mailer: XFMail 1.4.4 on FreeBSD X-Priority: 3 (Normal) Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: <200004130421.AAA77112@dean.pc.sas.com> Date: Thu, 13 Apr 2000 00:50:53 -0400 (EDT) Reply-To: Mike Heffner From: Mike Heffner To: bsd@freebsd.org Subject: RE: local firewall rules Cc: freebsd-ipfw@freebsd.org Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On 13-Apr-2000 Brian Dean wrote: | If nobody minds, I'd like to commit this change. However, if there's | another "proper" way that I should have done this, please let me know. | I don't think putting these in /usr/local/etc/rc.d is sufficient, | since that's the very last thing to run, and thus there is a window | where traffic that you would normally block would be free to pass | through the firewall. | I'm all for it. I have a similar situation; I run a script, instead of inputting to ipfw. One note, should the ${firewall_flags} and maybe ${firewall_quiet} be sent as args to the script? /**************************************** * Mike Heffner * * Fredericksburg, VA ICQ# 882073 * * Sent at: 13-Apr-2000 -- 00:41:02 EST * * http://my.ispchannel.com/~mheffner * ****************************************/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message