From owner-freebsd-stable Fri May 31 2:41:39 2002 Delivered-To: freebsd-stable@freebsd.org Received: from alogis.com (firewall.solit-ag.de [212.184.102.1]) by hub.freebsd.org (Postfix) with ESMTP id 4E82437B416; Fri, 31 May 2002 02:41:14 -0700 (PDT) Received: from alogis.com (kipp@clausthal.int1.b.intern [10.1.1.30]) by alogis.com (8.11.1/8.9.3) with ESMTP id g4V9f0l94878; Fri, 31 May 2002 11:41:02 +0200 (CEST) (envelope-from holger.kipp@alogis.com) Message-ID: <3CF74128.708F4612@alogis.com> Date: Fri, 31 May 2002 11:23:52 +0200 From: Holger Kipp X-Mailer: Mozilla 4.7 [en] (X11; U; Linux 2.2.13 i686) X-Accept-Language: en MIME-Version: 1.0 To: JJ Behrens Cc: FreeBSD-STABLE Mailing List , freebsd-questions@FreeBSD.ORG Subject: Re: Server won't boot after recompile the kernel with ipfw support References: <20020528142640.A22370@phxby.com> <20020528133316.S16405-100000@boris.st.hmc.edu> <20020528150941.A24676@phxby.com> <200205282131.g4SLVmYZ024980@apollo.backplane.com> <3CF48FB4.E82525FE@alogis.com> <20020530144048.A24912@alicia.nttmcl.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG JJ Behrens wrote: > > > To point out the obvious: put the firewall rules in "/etc/ipfw.conf", > > if firewall_type contains a filename. If firewall_type is the name > > of a configuration, edit rc.firewall. > > Hmm, very interesting. I can't seem to find this (i.e. pre-made > firewall_type's) documented in the handbook. Am I missing something, or should > I submit a PR? I'd say you're missing something . It is all described within /etc/defaults/rc.conf and /etc/rc.firewall. You might also want to look at 'man firewall', as has been pointed out already. Regards, Holger --- 8< ----------------- snip ----------------------------------------------- fgrep firewall /etc/defaults/rc.conf gives (among others): ### Basic network and firewall/security options: ### firewall_enable="NO" # Set to YES to enable firewall functionality firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall firewall_type="UNKNOWN" # Firewall type (see /etc/rc.firewall) Firewall type (see /etc/rc.firewall) gives: ############ # Define the firewall type in /etc/rc.conf. Valid values are: # open - will allow anyone in # client - will try to protect just this machine # simple - will try to protect a whole network # closed - totally disables IP services except via lo0 interface # UNKNOWN - disables the loading of firewall rules. # filename - will load the rules in the given filename (full path required) # # For ``client'' and ``simple'' the entries below should be customized # appropriately. -- Holger Kipp, Dipl.-Math., Systemadministrator | alogis AG Fon: +49 (0)30 / 43 65 8 - 114 | Berliner Strasse 26 Fax: +49 (0)30 / 43 65 8 - 214 | D-13507 Berlin Tegel email: holger.kipp@alogis.com | http://www.alogis.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message