Date: Mon, 28 Jan 2002 22:39:11 +0000 From: Ceri <setantae@submonkey.net> To: Nate Williams <nate@yogotech.com> Cc: Richard Glidden <rglidden@zaphod.wox.org>, freebsd-stable@FreeBSD.ORG Subject: Re: firewall config (CTFM) Message-ID: <20020128223911.GA7080@rhadamanth> In-Reply-To: <15445.46625.765383.179068@caddis.yogotech.com> References: <15445.37204.693732.376471@caddis.yogotech.com> <20020128150458.E10891-100000@charon.acheron.localnet> <15445.46625.765383.179068@caddis.yogotech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 28, 2002 at 03:33:05PM -0500, Richard Glidden wrote:
> On Mon, 28 Jan 2002, Nate Williams wrote:
>
> Ok, so if I don't load rules, I will lock myself out. So
> firewall_enable="NO" + IPFIREWALL = instant lockout. Seems pretty clear.
> What does rc.conf say?
>
> firewall_enable="NO" # Set to YES to enable firewall functionality
I freely admit to not having read more than two messages on this thread,
but I'm happy I get the general idea.
Why not just change the comment to :
firewall_enable="NO" # Set to YES to load firewall rulesets.
# Setting this to NO will drop all packets if
# IPFIREWALL is enabled in your kernel.
Job done as I see it.
Ceri
--
keep a mild groove on
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020128223911.GA7080>