Re: loading ipfw at boot time
Polytropon wrote: On Sat, 27 Apr 2013 21:23:58 -0400, Joe wrote: I know ipfw can be loaded at boot time by adding statements to /boot/loader.conf. Problem is I dont know what the ipfw module names are. How do I find the ipfw names to use? There are two ways. The first is to do a "ls" command in /boot/kernel to see the modules related to ipfw: /boot/kernel/ipfw.ko /boot/kernel/ipfw_nat.ko According to the rule (see "man loader.conf" for details) of how modules are enabled, the corresponding statements for /boot/loader.conf would be: ipfw_load="YES" ipfw_nat_load="YES" Note that the ipfw_nat module is only needed if you're going to use NAT functionality. The second way is to check /boot/defaults/loader.conf for related statements. It contains this line: ipfw_load="NO" # Firewall Is this what you've been searching for, or did I misunderstand your question? Polytropon your the man. You all ways come through with the correct answers with full details. Thank You ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: loading ipfw at boot time
On Sat, 27 Apr 2013 21:23:58 -0400, Joe wrote: > I know ipfw can be loaded at boot time by adding statements to > /boot/loader.conf. > > Problem is I dont know what the ipfw module names are. > > How do I find the ipfw names to use? There are two ways. The first is to do a "ls" command in /boot/kernel to see the modules related to ipfw: /boot/kernel/ipfw.ko /boot/kernel/ipfw_nat.ko According to the rule (see "man loader.conf" for details) of how modules are enabled, the corresponding statements for /boot/loader.conf would be: ipfw_load="YES" ipfw_nat_load="YES" Note that the ipfw_nat module is only needed if you're going to use NAT functionality. The second way is to check /boot/defaults/loader.conf for related statements. It contains this line: ipfw_load="NO" # Firewall Is this what you've been searching for, or did I misunderstand your question? -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: loading ipfw at boot time
Andreas Mueller wrote: Hello there. I know ipfw can be loaded at boot time by adding statements to /boot/loader.conf. Problem is I dont know what the ipfw module names are. How do I find the ipfw names to use? Not using ipfw by myself, but according to the handbook, the modules are loaded automatically, when editing rc.conf to load the firewall: Quote: IPFW is included in the basic FreeBSD install as a run time loadable module. The system will dynamically load the kernel module when rc.conf contains the statement firewall_enable="YES". After rebooting the system, the following white highlighted message is displayed on the screen as part of the boot process: ipfw2 initialized, divert disabled, rule-based forwarding disabled, default to deny, logging disabled Source: http://www.freebsd.org/doc/handbook/firewalls-ipfw.html Greets, Andreas That did not answer my question. What you wrote ONLY applies to the HOST. It has NO effect for a vimage jail. If I use ipfw on the host, then yes the ipfw modules are dynamically loaded into the kernel at boot time and the vimage jail can use them. But I use ipfilter on my host which means I have to recompile the kernel with ipfw hard coded in. Should be able to load the ipfw modules at boot time using loader.conf and still use ipfilter on the host dynamically. So back to the original question. How do I find the ipfw module names to use in the loader.conf file? This is a loader.conf question not a ipfw question. Thanks ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
Re: loading ipfw at boot time
Hello there. > I know ipfw can be loaded at boot time by adding statements to > /boot/loader.conf. > > Problem is I dont know what the ipfw module names are. > > How do I find the ipfw names to use? Not using ipfw by myself, but according to the handbook, the modules are loaded automatically, when editing rc.conf to load the firewall: Quote: IPFW is included in the basic FreeBSD install as a run time loadable module. The system will dynamically load the kernel module when rc.conf contains the statement firewall_enable="YES". After rebooting the system, the following white highlighted message is displayed on the screen as part of the boot process: ipfw2 initialized, divert disabled, rule-based forwarding disabled, default to deny, logging disabled Source: http://www.freebsd.org/doc/handbook/firewalls-ipfw.html Greets, Andreas ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"
