Date: Sun, 30 Jun 2002 20:30:04 -0700 (PDT) From: Brooks Davis <brooks@one-eyed-alien.net> To: freebsd-bugs@FreeBSD.org Subject: Re: misc/40041: firewall and network devices while booting Message-ID: <200207010330.g613U4Fo010118@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR misc/40041; it has been noted by GNATS. From: Brooks Davis <brooks@one-eyed-alien.net> To: "-=::(Zyx)::=-" <zyx@stv.sk> Cc: Brooks Davis <brooks@one-eyed-alien.net>, freebsd-gnats-submit@FreeBSD.ORG Subject: Re: misc/40041: firewall and network devices while booting Date: Sun, 30 Jun 2002 20:24:57 -0700 On Mon, Jul 01, 2002 at 01:23:03AM +0200, -=::(Zyx)::=- wrote: > I have default policy deny. But in case when interface is up and ipfw is > loading system accepts all traffic.. It doesn't matter what you ruleset does. If you have IPFIREWALL_DEFAULT_TO_ACCEPT in you kernel you will accept packets before you configure your firewall. If you don't want to do this, remove this option. If you won't have this option in your kernel, and you are recieving packets before your rules are configured there's an issue, otherwise it's your problem. -- Brooks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200207010330.g613U4Fo010118>