Date: Mon, 29 Jul 2013 12:27:40 +0100 From: Karl Pielorz <kpielorz_lst@tdx.co.uk> To: Stefan Esser <se@freebsd.org>, freebsd-hackers@freebsd.org Subject: Re: kldload ipfw, with IPFIREWALL_DEFAULT_TO_ACCEPT Message-ID: <AC5633093C6F6EB16C5C7DEF@Mail-PC.tdx.co.uk> In-Reply-To: <51F64BCC.9000301@freebsd.org> References: <1D6BF13DFC536AFC94EC6D64@Mail-PC.tdx.co.uk> <51F64BCC.9000301@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--On 29 July 2013 13:02 +0200 Stefan Esser <se@freebsd.org> wrote: > I guess you were looking for: > > net.inet.ip.fw.default_to_accept="1" > > which is a tunable to be set in /boot/loader.conf ... Very probably - but that's at boot time :( - Is there nothing I can do at kldload time to have the initial kldload give me a 'allow ip from any to any' rule as it loads? (thus not affecting traffic on the machine, or more importantly the CARP interfaces)? -Karl
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AC5633093C6F6EB16C5C7DEF>