On 05/21/10 08:46, Paul Johnston wrote:
Hi
How do I get ipfilter to read /etc/ipf/ipf.config when I use
pfexec svcadm refresh ipfilter
I can manually force it to read my config file using
pfexec ipf -Fa -f /etc/ipf/ipf.conf
pa...@opensolaris-2:~$ pfexec ipfstat -ni
@1 block in log quick from 130.88.105.55/32 to any
@2 block in log quick from 130.88.105.41/32 to any
@3 block in log quick from 130.88.105.44/32 to any
@4 pass in all
But for example after a reboot I get
pa...@opensolaris-2:~$ pfexec ipfstat -ni
empty list for ipfilter(in)
Cheers Paul
I always do a svcadm restart ipfilter; that seems to do the
trick.
Refresh gets it to read new properties from the repository.
Ipfilter doesn't re-read its config file apparently on
refresh.
From the svcadm man page:
refresh {FMRI | pattern}. . .
For each service instance specified by the operands,
requests that the assigned restarter update the
service's running configuration snapshot with the values
from the current configuration. Some of these values
take effect immediately (for example, dependency
changes). Other values do not take effect until the next
service restart. See the restarter and service documen-
tation for more information.
- Bart
--
Bart Smaalders Solaris Kernel Performance
bart.smaald...@oracle.com http://blogs.sun.com/barts
"You will contribute more with mercurial than with thunderbird."
_______________________________________________
opensolaris-help mailing list
opensolaris-help@opensolaris.org
