On Wed, Jan 22, 2003 at 03:18:33PM +0000, Daniel Bye wrote: > On Wed, Jan 22, 2003 at 09:45:09AM -0500, Stephen D. Kingrea wrote: > > running 4.7 with firewall, natd enabled kernel. i wish to create firewall > > rules outside of the rc.firewall script that remain static across > > reboots. to that end, i created a set (rc.firewall.rules), pointing > > rc.conf to that set: > > > > firewall_enable="YES" > > firewall_type="/etc/rc.firewall.rules" > > You should change "firewall_type" to "firewall_script". You should then > find all works as you want.
Well, almost... If you do it this way, you need to make sure the script file is executable and makes sense as a shell script. I use something like #!/bin/sh IPFW=/sbin/ipfw ${IPFW} -f flush ${IPFW} add 100 allow ip from any to any via lo0 ... etc. It works well for me. Dan -- Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3D73 AF47 D448 C5CA 88B4 0DCF 849C 1C33 3C48 2CDC _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-questions" in the body of the message