Bug 22843
| Summary: | rc.firewall will not install NAT rules if firewall_type is "custom" | ||
|---|---|---|---|
| Product: | Base System | Reporter: | sean <sean> |
| Component: | conf | Assignee: | ru <ru> |
| Status: | Closed FIXED | ||
| Severity: | Affects Only Me | ||
| Priority: | Normal | ||
| Version: | 4.1.1-STABLE | ||
| Hardware: | Any | ||
| OS: | Any | ||
Responsible Changed From-To: gnats-admin->freebsd-bugs Misfiled PR State Changed
From-To: open->closed
This change was intentional:
RCS file: /home/ncvs/src/etc/rc.firewall,v
Working file: rc.firewall
head: 1.38
branch:
locks: strict
access list:
keyword substitution: kv
total revisions: 61; selected revisions: 2
description:
----------------------------
revision 1.37
date: 2000/08/30 13:14:32; author: ru; state: Exp; lines: +2 -4
Only install `divert natd' rule for predefined firewall types,
not when ${firewall_type} is set to a filename, as we know
nothing about user's script specifics.
Reported by: Bernhard Valenti <bernhard.valenti@gmx.net>
----------------------------
revision 1.30.2.6
date: 2000/09/21 07:44:53; author: ru; state: Exp; lines: +2 -4
MFC: (rev 1.37) only install `divert natd' rule for predefined types.
=====================================================================
Responsible Changed From-To: freebsd-bugs->ru I did this change. |
If one has firewall_type != open or != client in /etc/rc.conf, *AND* natd_enable="yes", rc.firewall will not install the natd firewall divert rule. Fix: Hack rc.firewall - I changed line 105-106 to say: case ${firewall_type} in *) Or, add a new rc.conf entry with natd_fw_rule="yes". How-To-Repeat: Install default rc.firewall and rc.network, set firewall_type="/etc/ipfw.rules" and natd_enable="yes"