Bug 23342

Summary: Inaccuracy of the dialup-firewall tutorial
Product: Documentation Reporter: ncalvo <ncalvo>
Component: Books & ArticlesAssignee: Jesus <jesusr>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
dialup-firewall.patch none

Description ncalvo 2000-12-07 03:30:01 UTC 
The "Dialup-firewall" tutorial features an inaccuracy concerning the
name of the device on which the supplied firewall rules operate.

The supplied ruleset operates on the "tun0" interface. However, when
opening a PPP connection through a modem the "ppp0" interface is used
instead (as reported by  /sbin/ifconfig  ).

Fix: 

In the sgml source file of the tutorial, substitute "tun0" for "ppp0".

I am mailing a patch to both, the author of the tutorial (Marc Silver):

  marcs@draenor.org

and to the -doc list:

  freebsd-doc@freebsd.org
How-To-Repeat: Follow the tutorial and, afterwards, open a ppp conection through a
modem.

You will find that no traffic is allowed through that connection due
to the following firewall rule

  65435 deny log ip from any to any
Comment 1 eogren 2000-12-07 03:36:32 UTC 
  If you connect using user-mode PPP, like the majority
of FreeBSD users do, tun0 is the correct device.

Eric
----- Original Message -----
From: <ncalvo@es.freebsd.org>
To: <freebsd-gnats-submit@FreeBSD.ORG>
Sent: Wednesday, December 06, 2000 7:21 PM
Subject: docs/23342: Inaccuracy of the dialup-firewall tutorial


>
> >Number:         23342
> >Category:       docs
> >Synopsis:       Inaccuracy of the dialup-firewall tutorial
> >Confidential:   no
> >Severity:       non-critical
> >Priority:       low
> >Responsible:    freebsd-doc
> >State:          open
> >Quarter:
> >Keywords:
> >Date-Required:
> >Class:          doc-bug
> >Submitter-Id:   current-users
> >Arrival-Date:   Wed Dec 06 19:30:01 PST 2000
> >Closed-Date:
> >Last-Modified:
> >Originator:     ncalvo
> >Release:        4.2-RELEASE  i386
> >Organization:
> >Environment:
> FreeBSD amnesiac.no.domain 4.2-RELEASE FreeBSD 4.2-RELEASE #2: Thu Dec  7
02:00:29 CET 2000     root@amnesiac.no.domain:/usr/src/sys/compile/AMNESIAC
i386
>
> >Description:
> The "Dialup-firewall" tutorial features an inaccuracy concerning the
> name of the device on which the supplied firewall rules operate.
>
> The supplied ruleset operates on the "tun0" interface. However, when
> opening a PPP connection through a modem the "ppp0" interface is used
> instead (as reported by  /sbin/ifconfig  ).
>
> >How-To-Repeat:
> Follow the tutorial and, afterwards, open a ppp conection through a
> modem.
>
> You will find that no traffic is allowed through that connection due
> to the following firewall rule
>
>   65435 deny log ip from any to any
>
> >Fix:
> In the sgml source file of the tutorial, substitute "tun0" for "ppp0".
>
> I am mailing a patch to both, the author of the tutorial (Marc Silver):
>
>   marcs@draenor.org
>
> and to the -doc list:
>
>   freebsd-doc@freebsd.org
>
>
>
> >Release-Note:
> >Audit-Trail:
> >Unformatted:
>
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-doc" in the body of the message
>
Comment 2 ncalvo 2001-02-07 18:31:10 UTC 
Hello,

As a follow up to this short sighted pr that I opened, I have produced a
patch.

I have been in contact with Marc Silver (the author of the
dialup-firewall tutorial) and he has approved the patch.

I am enclosing the mentioned patch as an attachment.

Thank you.

ncalvo

_
Comment 3 Jesus freebsd_committer freebsd_triage 2001-02-27 12:28:05 UTC 
Responsible Changed
From-To: freebsd-doc->jesusr@freebsd.org

Working on it.
Comment 4 Jesus freebsd_committer freebsd_triage 2001-02-27 12:45:55 UTC 
State Changed
From-To: open->closed

Patch applied. 
Thanks!