Date: Mon, 29 Jul 2013 13:02:36 +0200 From: Stefan Esser <se@freebsd.org> To: freebsd-hackers@freebsd.org, kpielorz_lst@tdx.co.uk Subject: Re: kldload ipfw, with IPFIREWALL_DEFAULT_TO_ACCEPT Message-ID: <51F64BCC.9000301@freebsd.org> In-Reply-To: <1D6BF13DFC536AFC94EC6D64@Mail-PC.tdx.co.uk> References: <1D6BF13DFC536AFC94EC6D64@Mail-PC.tdx.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
Am 29.07.2013 12:45, schrieb Karl Pielorz: > I've got a number of 9.1 boxes, where we need to enable ipfw (by > kldload'ing it). > > I'm sure I saw a while ago a sysctl that would change the default ipfw > config from 'deny all' to 'allow all' - even for a kldload? But I can't > find it now. I guess you were looking for: net.inet.ip.fw.default_to_accept="1" which is a tunable to be set in /boot/loader.conf ... Regards, STefan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?51F64BCC.9000301>