need ipfw clarification
From: Duane Winner (dwinner-lists_at_att.net)
Date: 02/03/05
- Previous message: Chuck Swiger: "Re: Informatio request - FreeBSD Native Firewall Certificate"
- Next in thread: Roberto Nunnari: "Re: need ipfw clarification"
- Reply: Roberto Nunnari: "Re: need ipfw clarification"
- Maybe reply: Bill Moran: "Re: need ipfw clarification"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 03 Feb 2005 14:49:06 -0500 To: freebsd-security@freebsd.org
Hello,
I noticed that after enabling firewall in my kernel (5.3-release), my
dmesg now gives me this:
ipfw2 initialized, divert disabled, rule-based forwarding disabled,
default to accept, logging limited to 5 packets/entry by default
On 5.2.1, I used to get this:
ipfw2 initialized, divert disabled, rule-based forwarding enabled,
default to accept, logging disabled
If both cases, I am adding this to my KERNEL config:
options IPFIREWALL
options IPFIREWALL_DEFAULT_TO_ACCEPT
It seems that the major difference between 5.2.1 and 5.3 is that now
rule-based forwarding is disabled.
Is this correct? And what exactly is rule-based forwarding? I'm guessing
that it doesn't really apply to my situation, as in these cases, I am
using IPFW to create a deny all inbound to my laptop when I'm on the
road. But I just want to make sure.
Thanks,
DW
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Chuck Swiger: "Re: Informatio request - FreeBSD Native Firewall Certificate"
- Next in thread: Roberto Nunnari: "Re: need ipfw clarification"
- Reply: Roberto Nunnari: "Re: need ipfw clarification"
- Maybe reply: Bill Moran: "Re: need ipfw clarification"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
