# [EMAIL PROTECTED] / 2003-11-26 12:13:53 -0600:
In the last episode (Nov 26), fbsd_user said:
Looking for way to code IPFILTER rules with shell symbolic
substitution. I know how to do it in the rules, but how to get ipf
pgm to exec in shell? Any body have example of how to setup this?
In the last episode (Nov 26), fbsd_user said:
Looking for way to code IPFILTER rules with shell symbolic
substitution. I know how to do it in the rules, but how to get ipf
pgm to exec in shell? Any body have example of how to setup this?
/etc/rc.firewall has lots of examples using ipfw; the
/etc/rc.firewall has lots of examples using ipfw; the concepts should
work just as well with ipf.
I'm not sure that's true. /etc/rc.firewall is a shell script, an IP Filter
ruleset isn't. From the documentation and my own use of it, IP Filter
doesn't support variable substitution. If you're
Maltese
Sent: Wednesday, November 26, 2003 1:41 PM
To: [EMAIL PROTECTED] ORG
Cc: Dan Nelson
Subject: Re: IPFILTER rules with shell symbloic substitution
/etc/rc.firewall has lots of examples using ipfw; the concepts
should
work just as well with ipf.
I'm not sure that's true. /etc/rc.firewall
On Wed, Nov 26, 2003 at 02:59:00PM -0500, fbsd_user wrote:
Ipf.test rules file
#!/bin/sh
nic=l0
/sbin/ipf -Fa -f - EOF
pass in on $nic all
pass out on $nic all
pass in all
pass out all
EOF
snip
Any ideas about what is wrong with my ipfilter_rules=/etc/ipf.test
statement.
The
