Date: Tue, 18 Jan 2000 11:22:18 -0700 From: Brendan Conoboy <synk@swcp.com> To: "Ron 'The InSaNe One' Rosson" <insane@lunatic.oneinsane.net> Cc: freebsd-ipfw@FreeBSD.ORG Subject: Re: incorporating ipfilter Message-ID: <20000118112218.A10262@inago.swcp.com> In-Reply-To: <20000117225352.A9148@lunatic.oneinsane.net>; from Ron 'The InSaNe One' Rosson on Mon, Jan 17, 2000 at 10:53:52PM -0800 References: <20000117225352.A9148@lunatic.oneinsane.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 17, 2000 at 10:53:52PM -0800, Ron 'The InSaNe One' Rosson wrote: > I come from using IPFW but wantto learn and experiment with ipfilter. I > guess you can say I have grown accustomed to /etc/rc.conf and > /etc/rc.firewall to do all the work for me. Well with ipfilter there are > no implentations for it. > > Here are a few questions that I seem to not be able to answers for: > 1. What is the name of the conf file and its location? (/etc/ipf.conf) > 2. How is it called in the startup scripts. > 3. Other links of reference that tie closely with the *BSD way of > doing things? > > Any info or pointers is greatly appreciated. Hi Tia, FreeBSD doesn't currently have any ipf support in rc.conf and rc.firewall. I've promised to do this, and it looks like I better get hopping if I want it to be included in freebsd 4.0. You probably want do some something like "/sbin/ipf -f /etc/ipf.rules" in your rc.firewall script, or maybe even in rc itself. If you're also doing nat, "/usr/sbin/ipnat -f /etc/ipnat.conf". As an aid in creating ipf.rules and ipnat.conf, take a look at the howto at: http://www.obfuscation.org/ipf/ -Brendan (synk@swcp.com) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000118112218.A10262>