Hi,
Ipfilter (4.0.2) on Solaris 10 (3/5) for Sparc flat does not work. I have my old ipf.conf and ipnat.conf files from Solaris 9 for the box in /etc/ipf (I was running ipfilter 3.4.31 in S9). I can see my rules with "ipfstat -ioh", but nothing happens. Connections from "outside" work with no incrementation of ipfstat counters. I'm not happy about having a machine so available, especially after I ran nmap against it and found all kinds of crap running (like "finger"?? Gimee a break!) A search of /var/adm/messages reveals:
Feb 15 15:06:13 cayuga ipfilter: [ID 702911 daemon.warning] pfil not configured for firewall/NAT operation Feb 15 15:06:13 cayuga ipf: [ID 774698 kern.info] IP Filter: v4.0.2, running.
Hunh? What is this about? Should I upgrade to public domain 4.1.5? I ran "smpatch" to see if there were any S10 patches out yet, nothing.
Jeff Earickson Colby College
On Tue, 15 Feb 2005, Michael Lim(vpn) wrote:
Date: Tue, 15 Feb 2005 13:27:53 -0800 From: "Michael Lim(vpn)" <[EMAIL PROTECTED]> To: Jeff A. Earickson <[EMAIL PROTECTED]> Cc: [email protected] Subject: Re: Getting ipfilter to work on Solaris 10
Jeff A. Earickson wrote:
I'm playing with the Solaris 10 release on Sparc. Another gotcha is the fact that the config files (ipf.conf and ipnat.conf) go into /etc/ipf, and NOT /etc/opt/ipf. I stared at the S10 manpages for ipf, ipfstat, ipmon, etc, and none of these pages make **any** reference to where the config files live. I consider this a BUG in the ipfilter manpages for Solaris 10.
I'll file this.
Also, it would be nice if Sun had a symlink from /etc/opt/ipf -> /etc/ipf for us old-timers, so we could find the config files.
and I'll look into this as well.
-Mike
