Date: Mon, 28 Jan 2002 17:06:59 -0700 (MST) From: "M. Warner Losh" <imp@village.org> To: nate@yogotech.com Cc: cjm2@earthling.net, stable@FreeBSD.ORG, n@nectar.cc Subject: Re: Proposed Solution To Recent "firewall_enable" Thread. [Please Read] Message-ID: <20020128.170659.97077059.imp@village.org> In-Reply-To: <15445.54755.551301.284078@caddis.yogotech.com> References: <15445.54136.731213.811969@caddis.yogotech.com> <20020128.154656.123855750.imp@village.org> <15445.54755.551301.284078@caddis.yogotech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message: <15445.54755.551301.284078@caddis.yogotech.com>
Nate Williams <nate@yogotech.com> writes:
: > : Yes, and I think having this is a good thing. However, what are the
: > : default values for the variables?
: >
: > In previous mail I suggested:
: >
: > ipfw_enable=no
: > ipfw_firewall_enable=yes
:
: Gotcha, I confused ipfw_enable with ipfw_firewall_enable.
: Unfortunately, it's not obvious which one the users should use to enable
: the functionality.
:
: Now we have two variables that *appear* to be redundant....
That's as far as I'm willing to go. The rest would be a documentation
issue. It can be clearly stated how to disable things in the
documentation.
Of course, one could also argue that if you set firewall_enable to no
now that one could add
net.inet.ip.fw.enable=0
to /etc/sysctl.conf.
Warner
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020128.170659.97077059.imp>