From owner-freebsd-current Fri Jun 28 04:16:08 1996 Return-Path: owner-current Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id EAA25970 for current-outgoing; Fri, 28 Jun 1996 04:16:08 -0700 (PDT) Received: from shogun.tdktca.com ([206.26.1.21]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id EAA25965; Fri, 28 Jun 1996 04:16:04 -0700 (PDT) Received: from shogun.tdktca.com (daemon@localhost) by shogun.tdktca.com (8.7.2/8.7.2) with ESMTP id GAA05619; Fri, 28 Jun 1996 06:17:20 -0500 (CDT) Received: from orion.fa.tdktca.com ([163.49.131.130]) by shogun.tdktca.com (8.7.2/8.7.2) with SMTP id GAA05612; Fri, 28 Jun 1996 06:17:19 -0500 (CDT) Received: from orion (alex@localhost [127.0.0.1]) by orion.fa.tdktca.com (8.6.12/8.6.9) with SMTP id GAA12738; Fri, 28 Jun 1996 06:18:47 -0500 Message-ID: <31D3BF96.1EBFE6E3@fa.tdktca.com> Date: Fri, 28 Jun 1996 06:18:46 -0500 From: Alex Nash Organization: TDK Factory Automation X-Mailer: Mozilla 2.0 (X11; I; Linux 1.2.13 i586) MIME-Version: 1.0 To: taob@io.org, nate@mt.sri.com CC: current@FreeBSD.org, phk@FreeBSD.org Subject: Re: IPFW (mis)feature (fwd) References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-current@FreeBSD.org X-Loop: FreeBSD.org Precedence: bulk > > Why doesn't ipfw(8) allow me to specify the services using the names > > out of /etc/services? > > Funny, I was *just* about to ask the exact same question, after > fiddling with our new firewall for a couple of hours today. Accepting service names is on my TODO list, unfortunately poor health this week has prevented me from any hacking. Before someone jumps down my throat about the changes I brought in from -current, please note that: - The existing version in -stable did not: accept host names, and was not capable of printing service names in a listing. - There was no documentation to the fact that service names were not accepted. > As it is > now, I have comments in rc.firewall, but an 'ipfw l' is difficult to > parse, even with only a few of the well-known services enabled. Try ipfw -N l :) Alex