Date: Thu, 24 Jan 2002 20:21:50 -0800 (PST) From: Patrick Greenwell <patrick@stealthgeeks.net> To: stable@freebsd.org Subject: Firewall config non-intuitiveness Message-ID: <20020124201411.A39351-100000@rockstar.stealthgeeks.net>
next in thread | raw e-mail | index | archive | help
I recently got bit by this: I have firewall options configured into my
kernel, and made the mistake of thinking that in order to disable
this functionality to allow all traffic that I merely needed to remove the
firewall_enable paramater from my rc.conf since firewall_enable is set to NO in
/etc/defaults/rc.conf.
This did not have the intended result of disabling the firewall, rather a
default deny was applied. If firewall_enable is set to NO, wouldn't it make
more sense to have the init scripts set net.inet.ip.fw.enable to 0, or am I
missing something?
Opinions welcome.
/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\
Patrick Greenwell
Stealthgeeks,LLC. Operations Consulting
http://www.stealthgeeks.net
\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/\/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020124201411.A39351-100000>