On Wed, Jan 22, 2003 at 03:18:33PM +0000, Daniel Bye wrote:
> On Wed, Jan 22, 2003 at 09:45:09AM -0500, Stephen D. Kingrea wrote:
> > running 4.7 with firewall, natd enabled kernel. i wish to create firewall
> > rules outside of the rc.firewall script that remain static across
> > reboots. to that end, i created a set (rc.firewall.rules), pointing
> > rc.conf to that set:
> >
> > firewall_enable="YES"
> > firewall_type="/etc/rc.firewall.rules"
>
> You should change "firewall_type" to "firewall_script". You should then
> find all works as you want.
Well, almost... If you do it this way, you need to make sure the script
file is executable and makes sense as a shell script. I use something
like
#!/bin/sh
IPFW=/sbin/ipfw
${IPFW} -f flush
${IPFW} add 100 allow ip from any to any via lo0
... etc.
It works well for me.
Dan
--
Daniel Bye
PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc
PGP Key fingerprint: 3D73 AF47 D448 C5CA 88B4 0DCF 849C 1C33 3C48 2CDC
_
ASCII ribbon campaign ( )
- against HTML, vCards and X
- proprietary attachments in e-mail / \
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message
