Then the packet passes.
you can check ruleset in kernel in such moment to tell the IPF state.
typing like 'ipfstat -ionh' will tell you if there are any working rules in
IPF.

regards
sasha

2010/9/24 J. Joseph Felten <[email protected]>:
> Sorry if this is obvious to IP Filter veterans.  I searched the FAQ
> and Solaris IP Filter documentation and the mailing list etc. etc. and
> have not found an answer.
>
> I've created a very simple IP Filter rules set on Solaris 10 to block
> access to a particular port from particular IP addresses.  This works
> well but what happens if IP Filter fails in some way (perhaps putting
> the service in to a maintenance state)?  Isn't the kernel module's
> default to pass all?
>

Reply via email to