Bogar, last time I checked, ipfilter worked fine for me. Are you saying it is stop working after reboot ? Any messages in the dmesg ?
On Thu, 2008-05-15 at 12:51 +0200, Bogar Attila wrote: > Hi All, > > I've posted my question on two different forums, but no answer yet, so I > ask it here also, I hope someone could explain what could be wrong with > it... > > I've installed NexentaCP and there are problems with ipfilter. > It seems that it loads the rules after reboot, but there's no effect. > > I've done the following for test purposes on a real machine > and either on VMware Workstation: > > :e /etc/ipf/ipf.conf > pass in quick on lo0 all > pass in quick proto tcp from any to any port = 22 keep state > pass out quick from any to any keep state > block in quick all > > # svcadm enable ipfilter > > // the filtering works > > # reboot > > // after reboot svcs show ipfilter enabled, ipfstate -ioh shows the > // rules, > // but with 0 hit for all rules and all ports are open for the outside > // world!!! > > If I issue a svcadm restart ipfilter, then it works again. > > What could be the problem? Is it a bug or a feature? ;-) > BTW, there's no man page for ipf in NexentaCP. > > Thanks in advance, > Attila > _______________________________________________ > gnusol-users mailing list > [email protected] > http://lists.sonic.net/mailman/listinfo/gnusol-users > _______________________________________________ gnusol-users mailing list [email protected] http://lists.sonic.net/mailman/listinfo/gnusol-users
