From owner-freebsd-questions Tue Sep 14 12:33: 8 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mail.rdc1.sdca.home.com (ha1.rdc1.sdca.home.com [24.0.3.66]) by hub.freebsd.org (Postfix) with ESMTP id 0ED3314FFD; Tue, 14 Sep 1999 12:33:05 -0700 (PDT) (envelope-from btalbot@ucsd.edu) Received: from ragtop ([24.0.46.246]) by mail.rdc1.sdca.home.com (InterMail v4.01.01.00 201-229-111) with ESMTP id <19990914193305.XJCV29123.mail.rdc1.sdca.home.com@ragtop>; Tue, 14 Sep 1999 12:33:05 -0700 Message-Id: <4.2.0.58.19990914122726.00a802e0@mail.elcjn1.sdca.home.com> X-Sender: btalbot@ekimaphost (Unverified) X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.0.58 Date: Tue, 14 Sep 1999 12:33:04 -0700 To: "Greg Quinlan" , From: Bryan Talbot Subject: Re: New rc.conf entry question. Cc: In-Reply-To: <002001befeb0$d919d2c0$5214010a@swlct.sthames.nhs.uk> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I accomplished this by simply setting firewall_type="/etc/firewall_rules.m4" and modifying the last little bit of the /etc/rc.firewall to read ... elif [ "${firewall_type}" != "UNKNOWN" -a -r "${firewall_type}" ]; then $fwcmd -p /usr/bin/m4 ${firewall_type} fi This puts all the custom firewall rules into one location that should never be disturbed by an upgrade. I couldn't get around the need to modify the rc.firewall file somewhat though to allow for the use of M4. -Bryan At 05:58 AM 9/14/99 , Greg Quinlan wrote: >I have noticed that there is a new entry in the /etc/defaults/rc.conf >"firewall_script=/etc/rc.firewall", would it be advisable to have the >default location for the firewall script as "/etc/defaults/rc.firewall" >rather than "/etc/rc.firewall." Some people who have already customized >their "/etc/rc.firewall" script and will feel confident that it will not be >overwritten by and upgrade. Those doing a fresh install we not be effected >either. :) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message