From owner-freebsd-bugs Wed Mar 13 16:40:23 2002 Delivered-To: freebsd-bugs@hub.freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id C60B037B405 for ; Wed, 13 Mar 2002 16:40:01 -0800 (PST) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.6/8.11.6) id g2E0e1a31018; Wed, 13 Mar 2002 16:40:01 -0800 (PST) (envelope-from gnats) Received: from pmade.org (pmade.org [206.157.70.61]) by hub.freebsd.org (Postfix) with ESMTP id 5C83E37B419 for ; Wed, 13 Mar 2002 16:37:10 -0800 (PST) Received: (from pjones@localhost) by pmade.org (8.11.6/8.11.6) id g2E0bAb03963; Wed, 13 Mar 2002 16:37:10 -0800 (PST) (envelope-from pjones) Message-Id: <200203140037.g2E0bAb03963@pmade.org> Date: Wed, 13 Mar 2002 16:37:10 -0800 (PST) From: Peter J Jones Reply-To: Peter J Jones To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 Subject: conf/35877: rc.firewall? does not setup lo0 Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 35877 >Category: conf >Synopsis: rc.firewall? does not setup lo0 >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Wed Mar 13 16:40:01 PST 2002 >Closed-Date: >Last-Modified: >Originator: Peter Jones >Release: FreeBSD 4.5-STABLE i386 >Organization: >Environment: 4.5-STABLE as of 03-12-2002 System: FreeBSD pmade.org 4.5-STABLE FreeBSD 4.5-STABLE #0: Tue Mar 12 19:47:49 PST 2002 pjones@pmade.org:/usr/src/sys/compile/KERNEL i386 >Description: Default behavior of the /etc/rc.firewall and /etc/rc.firewall6 scripts has changed for systems that use firewall_type="somefile", where somefile is an exteral file with firewall rules. Before 4.5-STABLE the rc.firewall? scripts would setup the loopback interface with the correct firewall rules. The scripts no longer setup the loopback interface. I don't know if we should update our firewall script or the rc.firewall? files. Here is a patch anyway. >How-To-Repeat: cvsup to 4.5-STABLE. Use a firewall script. ipfw list. >Fix: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # rc.firewall.patch # rc.firewall6.patch # echo x - rc.firewall.patch sed 's/^X//' >rc.firewall.patch << 'END-of-rc.firewall.patch' X--- rc.firewall.orig Wed Mar 13 16:15:04 2002 X+++ rc.firewall Wed Mar 13 16:16:03 2002 X@@ -294,6 +294,7 @@ X [Uu][Nn][Kk][Nn][Oo][Ww][Nn]) X ;; X *) X+ setup_loopback X if [ -r "${firewall_type}" ]; then X ${fwcmd} ${firewall_flags} ${firewall_type} X fi END-of-rc.firewall.patch echo x - rc.firewall6.patch sed 's/^X//' >rc.firewall6.patch << 'END-of-rc.firewall6.patch' X--- rc.firewall6.orig Wed Mar 13 16:17:09 2002 X+++ rc.firewall6 Wed Mar 13 16:17:31 2002 X@@ -279,6 +279,7 @@ X [Uu][Nn][Kk][Nn][Oo][Ww][Nn]) X ;; X *) X+ setup_local X if [ -r "${ipv6_firewall_type}" ]; then X ${fw6cmd} ${ipv6_firewall_flags} ${ipv6_firewall_type} X fi END-of-rc.firewall6.patch exit >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message