Hi,
2. use the "svcadm clear ipfilter" command to clear the service
maintenance state
Jan
On 12. 10. 2017 2:04, Marc Phillips wrote:
I have, what I suspect are, remedial smartOS questions which I haven't been
able to google an answer too. Just getting back into smartOS and I've never
used IPF before.
1. I have IPF set to log and put local0.* /var/log/ipf.log in both syslog.conf
and rsyslog.conf (rsyslog seems to be what's running; so I assume it reads
/etc/rsyslog.conf).
That log file doesn't get touched after kill HUPing the service or rebooting the box. I have
"block in quick log first on <interface> all" in my ipf configs.
Not sure what I'm missing based on reading the IPF docos but not getting logs.
IPF itself is working fine otherwise on both IPv4 and IPv6.
2. When ipfilter errors out (for syntax errors in config), I have to reboot in
order to make it reread the config. refresh, disable/enable, restart seem to
have no effect if it's failed a load. I see the refresh notifications in the
log, but it doesn't seem to try to reload/restart unless and until I reboot.
Not sure if there's a trick to make it do that via svcadm that I'm missing, but
I'd like to know if there is. Reboot seems rather brute force.
I'm running SmartOS base64 14.3.0 in Joyent's public cloud.
R. Marc
-------------------------------------------
smartos-discuss
Archives: https://www.listbox.com/member/archive/184463/=now
RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00
Modify Your Subscription:
https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb
Powered by Listbox: http://www.listbox.com
