Date: Sun, 27 Oct 2002 12:08:52 -0500 From: Chris Pepper <pepper@reppep.com> To: Marc Fonvieille <blackend@freebsd.org> Cc: Sue Blake <sue@welearn.com.au>, freebsd-doc@freebsd.org Subject: Re: IPFW doc inconsistency Message-ID: <p05300702b9e1cdced749@[66.92.104.201]> In-Reply-To: <20021027110308.A34658@abigail.blackend.org> References: <20021027182427.S363@welearn.com.au> <20021027110308.A34658@abigail.blackend.org>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:03 AM +0100 2002/10/27, Marc Fonvieille wrote: >On Sun, Oct 27, 2002 at 06:24:28PM +1100, Sue Blake wrote: >> The handbook says that the kernel must be rebuilt before IPFW can >> be used, but firewall(7) says that it is not essential to build a >> customer(sic) kernel. >> > >That typo was fixed on -CURRENT but never merged :) > >> I suspect the former gives not quite the whole story, and the latter >> has a small typo. Maybe someone more knowledgeable could check whether >> I'm reading correctly and fix if necessary? >> > >The Handbook section about ipfw is quite old, so not in sync with >"current" FreeBSD. >You can now use ipfw as module, a custom kernel is not mandatory for >packet filtering but for diverting (NATD) you need a specific kernel >(options DIVERT). FYI, I am most of the way through working up a change to ipfw.8 and partway through a Handbook section on how to enable through rc.conf. Chris -- Chris Pepper: <http://www.reppep.com/~pepper/>; Rockefeller University: <http://www.rockefeller.edu/>; To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-doc" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?p05300702b9e1cdced749>