I've noticed problems with IPFilter after reboot, too. When my box reboots, I generally unplumb the outgoing network interface, replumb it, and then svcadm restart ipfilter
Otherwise, my machine cannot access the internet (!) I didn't spend too much time to narrow the exact problem (I always assumed that it was because I have a weird configuration with three NICs installed). -Jeff --- Erast Benson <[EMAIL PROTECTED]> wrote: > Bogar, > > last time I checked, ipfilter worked fine for me. Are you saying it is > stop working after reboot ? Any messages in the dmesg ? > > On Thu, 2008-05-15 at 12:51 +0200, Bogar Attila wrote: > > Hi All, > > > > I've posted my question on two different forums, but no answer yet, so > I > > ask it here also, I hope someone could explain what could be wrong with > > it... > > > > I've installed NexentaCP and there are problems with ipfilter. > > It seems that it loads the rules after reboot, but there's no effect. > > > > I've done the following for test purposes on a real machine > > and either on VMware Workstation: > > > > :e /etc/ipf/ipf.conf > > pass in quick on lo0 all > > pass in quick proto tcp from any to any port = 22 keep state > > pass out quick from any to any keep state > > block in quick all > > > > # svcadm enable ipfilter > > > > // the filtering works > > > > # reboot > > > > // after reboot svcs show ipfilter enabled, ipfstate -ioh shows the > > // rules, > > // but with 0 hit for all rules and all ports are open for the outside > > // world!!! > > > > If I issue a svcadm restart ipfilter, then it works again. > > > > What could be the problem? Is it a bug or a feature? ;-) > > BTW, there's no man page for ipf in NexentaCP. > > > > Thanks in advance, > > Attila > > _______________________________________________ > > gnusol-users mailing list > > [email protected] > > http://lists.sonic.net/mailman/listinfo/gnusol-users > > > > _______________________________________________ > gnusol-users mailing list > [email protected] > http://lists.sonic.net/mailman/listinfo/gnusol-users > _______________________________________________ gnusol-users mailing list [email protected] http://lists.sonic.net/mailman/listinfo/gnusol-users
