Date: Thu, 20 Jun 2019 05:50:32 +0000 From: bugzilla-noreply@freebsd.org To: ipfw@FreeBSD.org Subject: [Bug 238694] Configuring & using a customized IPFW rule set now causes additional rles to be (involuntarily) added Message-ID: <bug-238694-8303-VlmiGxUQRc@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-238694-8303@https.bugs.freebsd.org/bugzilla/> References: <bug-238694-8303@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238694 --- Comment #5 from Rodney W. Grimes <rgrimes@FreeBSD.org> --- (In reply to rkoberman from comment #4) Your now implementing, or advocating implementing, policies that are simply= not within the scope of what FreeBSD should be implementing. I'll give you that your list of default requirements are valid, and correct, but the moment a user TOUCHES firewall_foo we are no longer in the default world, and we should fully respect what ever policy the user so chooses and should fully and correctly do so in the most painless way possible. If the user wishes to change things he shall be allowed to, otherwise we are driving him to go edit etc/rc.firewall and that is not the desired results. Furthermore this IS a regression in behavior, in the past we had no such ru= les being added in this case, and that more than anything is the reason we have this bug report at all and we should respect that as a true and valid issue. Bottom line, no one is advocating changing what the end results of the DEFA= ULT configuration is, we (I) are advocating that things be made properly flexib= le and backwards compatible, ie this users old and working configuration sudde= nly broke in unexpected ways and that is just bad. It is rather trivial to fix: case ${firewall_type} in (very long regex that matches all the known types) setup_loopback setup_ipv6_mandatory esac restored prior behavior and your "Requriements" have also been met. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-238694-8303-VlmiGxUQRc>