Date: Mon, 24 Aug 1998 09:30:37 +0200 From: Philippe Regnauld <regnauld@deepo.prosa.dk> To: wwoods@cybcon.com Cc: FreebSD Current <freebsd-current@FreeBSD.ORG> Subject: Re: Firewall Rules are weird.....look at this...in current.... Message-ID: <19980824093037.55193@deepo.prosa.dk> In-Reply-To: <XFMail.980823215705.wwoods@cybcon.com>; from William Woods on Sun, Aug 23, 1998 at 09:57:05PM -0700 References: <XFMail.980823215705.wwoods@cybcon.com>
next in thread | previous in thread | raw e-mail | index | archive | help
William Woods writes:
>
> I just compiled todays cvsup of current and all is fine except this. Here is a
> portion of my firewall rules:
>
> -------------------------------------
> 00100 allow ip from any to any via lo0
> 00200 deny ip from any to 127.0.0.0/8
> 65000 allow ip from any to any
> 65535 allow ip from any to any
> 00000 deny ip from any to any
> 00000 deny ip from any to any
[...]
> options IPFIREWALL #firewall
> options IPFIREWALL_VERBOSE #print information about
> # dropped packets
> options IPFIREWALL_FORWARD #enable xparent proxy support
> options "IPFIREWALL_VERBOSE_LIMIT=100" #limit verbosity
> options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default
> options IPDIVERT #divert sockets
> options IPFILTER #kernel ipfilter support
> options IPFILTER_LOG #ipfilter logging
> #options IPFILTER_LKM #kernel support for ip_fil.o LKM
Why do you have both IPFILTER and IPFW ?
--
-[ Philippe Regnauld / sysadmin / regnauld@deepo.prosa.dk / +55.4N +11.3E ]-
The Internet is busy. Please try again later.
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980824093037.55193>