From owner-freebsd-stable Fri Mar 8 14:20:40 2002 Delivered-To: freebsd-stable@freebsd.org Received: from rwcrmhc53.attbi.com (rwcrmhc53.attbi.com [204.127.198.39]) by hub.freebsd.org (Postfix) with ESMTP id AAC2E37B422 for ; Fri, 8 Mar 2002 14:20:14 -0800 (PST) Received: from bmah.dyndns.org ([12.233.149.189]) by rwcrmhc53.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020308222014.DLMU2951.rwcrmhc53.attbi.com@bmah.dyndns.org>; Fri, 8 Mar 2002 22:20:14 +0000 Received: (from bmah@localhost) by bmah.dyndns.org (8.11.6/8.11.6) id g28MKE411800; Fri, 8 Mar 2002 14:20:14 -0800 (PST) (envelope-from bmah) Message-Id: <200203082220.g28MKE411800@bmah.dyndns.org> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: conrads@cox.net Cc: FreeBSD Stable List Subject: Re: Need for explicit ipfw pass rule for 127.0.0.0/8 not documen In-reply-to: References: Comments: In-reply-to Conrad Sabatier message dated "Fri, 08 Mar 2002 13:45:39 -0600." From: "Bruce A. Mah" Reply-To: bmah@FreeBSD.ORG X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A 2V%N&+ X-Image-Url: http://www.employees.org/~bmah/Images/bmah-cisco-small.gif X-Url: http://www.employees.org/~bmah/ Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Fri, 08 Mar 2002 14:20:13 -0800 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG If memory serves me right, Conrad Sabatier wrote: > > On 08-Mar-2002 Alan Eldridge wrote: > > > > I was forwarded the Mini-HEADS-UP mail. That has *got* to go in the > > RELNOTES.TXT for 4.5-STABLE. It should go in /usr/src/UPDATING, too. > > As I understand it, it's not an ipfw change, it's an rc.firewall* change. > > And if it bites you, you have nothing but intuition to tell you what's > > wrong, since the dropped packets are not logged. > > I don't understand. This mini-HEADS UP was posted to -stable recently, > which, since you're running -stable, you *are* subscribed to and do read, > right? Well, you're both right. Yes, Alan should have seen the HEADS UP, but this change needs to go in the release notes anyways, if for no other reason than it shouldn't bite 4.6-RELEASE users when the time comes. I've got some text queued up for my next update of the release notes. The reason this didn't happen yet is that I somehow missed its significance, despite that fact that the HEADS UP applies to me and that I would have gotten bit by this on the next installworld on my home firewall box. :-) Thanks... Bruce. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message