Then the packet passes. you can check ruleset in kernel in such moment to tell the IPF state. typing like 'ipfstat -ionh' will tell you if there are any working rules in IPF.
regards sasha 2010/9/24 J. Joseph Felten <[email protected]>: > Sorry if this is obvious to IP Filter veterans. I searched the FAQ > and Solaris IP Filter documentation and the mailing list etc. etc. and > have not found an answer. > > I've created a very simple IP Filter rules set on Solaris 10 to block > access to a particular port from particular IP addresses. This works > well but what happens if IP Filter fails in some way (perhaps putting > the service in to a maintenance state)? Isn't the kernel module's > default to pass all? >
