From owner-freebsd-questions Tue Oct 15 10:30:57 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E300837B401 for ; Tue, 15 Oct 2002 10:30:55 -0700 (PDT) Received: from kumprang.or.id (kumprang.or.id [202.143.103.227]) by mx1.FreeBSD.org (Postfix) with SMTP id 802FF43E88 for ; Tue, 15 Oct 2002 10:30:52 -0700 (PDT) (envelope-from budsz@kumprang.or.id) Received: (qmail 3279 invoked by uid 1008); 15 Oct 2002 17:32:24 -0000 Date: Wed, 16 Oct 2002 00:32:23 +0700 From: budsz To: "Jack L. Stone" Cc: FreeBSD-Questions Subject: Re: About rc.firewall Message-ID: <20021015173223.GA2352@kumprang.or.id> References: <200210151023430685.13684C4D@home.24cl.com> <20021015135723.GA1427@kumprang.or.id> <200210151023430685.13684C4D@home.24cl.com> <3.0.5.32.20021015103018.0136e5e8@mail.sage-one.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="SLDf9lqlvOQaIe6s" Content-Disposition: inline In-Reply-To: <3.0.5.32.20021015103018.0136e5e8@mail.sage-one.net> X-Pubkey: "http://www.kumprang.or.id/~budsz/Pubkey.txt" X-Pubkey-MD5: "http://www.kumprang.or.id/~budsz/Pubkey-checksum.md5" X-Finger-Print: "A05A 268C 3CD4 ABBD D9EB 11E1 F64C 4B4E 6269 5304" X-System-Operation: FreeBSD 4.7-STABLE i386 X-Organization: "Internet Cafe and Game PC Kumprang" User-Agent: Mutt/1.5.1i X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --SLDf9lqlvOQaIe6s Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Oct 15, 2002 at 10:30:18AM -0500, Jack L. Stone wrote: >Designating the type "open" will make your system set up wide open and can >be useful when debugging the rc.firewall script and the kernel has been >compiled to "deny all". If you want to the rc.firewall to load and bee >effective though, you must modify it for your own use, incuding the proper >designations of interfaces, ports, and rules. Sorry, I mean is:=20 What is the relation between firewall_type in /etc/rc.conf and the same statement; firewall_type in rc.firewall? Is it enough if i only define the firewall_type just once; In rc.firewall only? --=20 budsz --SLDf9lqlvOQaIe6s Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE9rFEm9kxLTmJpUwQRArU/AJ9+1lT4CX/fRwCHBuCBh1XmdLxEawCeKU+t nriPCY5AXlHUKDVYbrfPfFY= =8dYt -----END PGP SIGNATURE----- --SLDf9lqlvOQaIe6s-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message