Bug 16180

Summary: firewall rules may require flags to be passed to ipfw
Product: Base System Reporter: Kurt
Component: confAssignee: freebsd-bugs (Nobody) <bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: 3.4-STABLE   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Kurt 2000-01-18 18:10:01 UTC 
For user specified firewall types (rc.conf $firewall_type), rc.firewall
simply calls ipfw with $firewall_type as the only argument.  It
would be nice if there was a mechanism to pass additional flags
to ipfw, such as "-p /usr/bin/cpp".

Attached is a small patch to allows, but does not require,
$firewall_flags to set in rc.conf and for these flags to be
passed to ipfw when a user has specified an alternative
firewall type.

It is meant to be used as follows:
firewall_enable="YES"
firewall_script="/etc/rc.firewall"
firewall_type="/etc/firewall.ipfw"
firewall_quiet="YES"
firewall_flags="-p /usr/bin/cpp -D router"
Comment 1 nbm freebsd_committer freebsd_triage 2000-06-26 11:30:13 UTC 
State Changed
From-To: open->closed

A similar fix has been committed, see firewall_flags in rc.conf (which 
may or may not have been related to this PR).