Bug 99336
| Summary: | Unclear handbook wording about firewall_enable | ||
|---|---|---|---|
| Product: | Documentation | Reporter: | Merijn Verstraaten <merijn.verstraaten> |
| Component: | Books & Articles | Assignee: | Tom Rhodes <trhodes> |
| Status: | Closed FIXED | ||
| Severity: | Affects Only Me | ||
| Priority: | Normal | ||
| Version: | Latest | ||
| Hardware: | Any | ||
| OS: | Any | ||
|
Description
Merijn Verstraaten
2006-06-23 01:50:23 UTC
Responsible Changed From-To: freebsd-www->freebsd-doc This is actually a 'docs' PR; 'www' is for things that only appear on the website. On 2006-06-23 00:16, Merijn Verstraaten <merijn.verstraaten@xs4all.nl> wrote: > Firewall chapter, IPFW configuration (26.6) > > "If you do not have IPFW compiled into your kernel you will need to > load it with the following statement in your /etc/rc.conf: > > firewall_enable="YES"" > > It's not clear that while IPFW will start fine without > firewall_enable="YES" in rc.conf if you have it compiled into your > kernel, the rules script provided with firewall_script won't run if > firewall_enable="YES" isn't set. Hmmm, well the text is unclear. It doesn't matter if you compile `IPFW' support into your kernel or not these days. The /etc/rc.d/ipfw script will take care of loading the module automatically. Even `DUMMYNET' can be loaded as a module in FreeBSD 7.0-CURRENT now. Can someone from the freebsd-doc people who has access to a STABLE system check if auto-loading of ipfw.ko and dummynet.ko modules works as expected in FreeBSD 6.X too? Then we should remove this confusing part about ``having IPFW compiled into your kernel''. - Giorgos State Changed From-To: open->closed The text has been removed and replaced with information on how to load the firewall. Thanks for the submission, and Giorgos for the follow up (yes, 6.X works like that Mr. Keramidas). Responsible Changed From-To: freebsd-doc->trhodes Over to me. |
