From owner-freebsd-bugs Fri Mar 1 9:20:19 2002 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 68D1C37B41A for ; Fri, 1 Mar 2002 09:20:05 -0800 (PST) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.6/8.11.6) id g21HK5x08552; Fri, 1 Mar 2002 09:20:05 -0800 (PST) (envelope-from gnats) Date: Fri, 1 Mar 2002 09:20:05 -0800 (PST) Message-Id: <200203011720.g21HK5x08552@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Jeremy Norris Subject: Re: conf/35178: ipfilter for IPV6 not availlable in rc.* Reply-To: Jeremy Norris Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The following reply was made to PR conf/35178; it has been noted by GNATS. From: Jeremy Norris To: cjclark@alum.mit.edu Cc: FreeBSD-gnats-submit@FreeBSD.org Subject: Re: conf/35178: ipfilter for IPV6 not availlable in rc.* Date: Fri, 1 Mar 2002 11:19:18 -0600 On Fri, Mar 01, 2002 at 08:37:05AM -0800, Crist J. Clark wrote: > The problem with that is ipfilter_active would not be available at > this point. It is local to the network_pass1() function in > rc.network. It is possible to make it global, but very kludgey, > passing data between the scripts in that way. In my scripts, I've just > dropped the flush completely. It doesn't really seem all that > necessary to me. Except it will flush all your ipv4 rules, leaving you with either all ipv4 passed in and out or all blocked in and out if you compiled with IPFILTER_DEFAULT_BLOCK. Jeremy To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message