Date: Sat, 25 Apr 2026 12:53:16 +0200 From: Sergio Carlavilla <carlavilla@freebsd.org> To: MP <michaelparke74@gmail.com> Cc: freebsd-doc@freebsd.org Subject: Re: Suggestion for Chapter 33 (firewalls) in FreeBSD handbook Message-ID: <CAFwocyMnPYKZsVeX_djTrOyyfROc9=kdbGAyPt20iNZHdMPaAA@mail.gmail.com> In-Reply-To: <3407444.aeNJFYEL58@debianlenovo>
index | next in thread | previous in thread | raw e-mail
On Thu, 23 Apr 2026 at 01:36, MP <michaelparke74@gmail.com> wrote: > > I think that the "if firewall_type...configuration of the system" line in > Chapter 33 of the Handbook under IPFW is confusing because it makes it seem > like only the "client" or "simple" IPFW presets can be modified by the rules > specified in /etc/rc.firewall. There is nothing mentioning that, for example, > inbound ssh connections can be allowed on the workstation preset by using > firewall_myservices and firewall_allowservices. Furthermore, there is nothing > that I could easily find in the handbook or in /etc/rc.firewall that indicates > that the modifications to the default rules should be added to /etc/rc.conf to > persist across reboots. > > I think that there should be something in the handbook that says something > like "configuring something like allowing inbound ssh connections to the > workstation preset can be done by adding 'firewall_myservices="ssh"' and > 'firewall_allowservices="any"' as found in /etc/rc.firewall to /etc/rc.conf" > would be helpful. Or there at least could be something indicating that all > presets can be modified by adding rules found in /etc/rc.firewall to /etc/ > rc.conf. > > > Hi, Thank you so much for the suggestion. I plan to run another Handbook Working Group after we finish with the new design for the website. If you want, I can also add you to the Working Group. Bye!home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFwocyMnPYKZsVeX_djTrOyyfROc9=kdbGAyPt20iNZHdMPaAA>