When specifying: firewall_type="/etc/firewall.local" in rc.conf, loading of my config file fails with: ipfw: bad arguments, for usage summary ``ipfw'' Receive same error at command line when entering: ipfw /etc/firewall.local Apparently an invalid argument/bad syntax. The syntax is from a FreeBSD tutorial. Can anyone help? Also, how do definitively know if you are running ipfw2? Thanks for the help, Dennis
Dennis Antunes wrote:> When specifying: firewall_type="/etc/firewall.local" in rc.conf, loading > of my config file fails with: ipfw: bad arguments, for usage summary > ``ipfw'' > Receive same error at command line when entering: ipfw > /etc/firewall.localTry: ipfw -p /bin/cat /etc/firewall.local> Also, how do definitively know if you are running ipfw2?dmesg will probably tell you, or see whether: sysctl net.inet.ip.fw.autoinc_step ...is present (if so, this implies IPFW2). -- -Chuck
On 03-Feb-2004 Dennis Antunes wrote:> When specifying: firewall_type="/etc/firewall.local" in rc.conf, loading > of my config file fails with: ipfw: bad arguments, for usage summary > ``ipfw''This error is also displayed when the file doesn't exist... Do you have checked if it exists and is readable? -- <regisr>
"Dennis Antunes" <d.antunes@comcast.net> writes:> When specifying: firewall_type="/etc/firewall.local" in rc.conf, [...]firewall_type is used to select one of several standard setups in /etc/rc.firewall. The correct variable to use to specify a different firewall script is firewall_script. This is described in detail in the rc.conf manual page, which you should have read before posting here. DES -- Dag-Erling Sm?rgrav - des@des.no
On 03-Feb-2004 Dag-Erling Sm?rgrav wrote:> firewall_type is used to select one of several standard setups in > /etc/rc.firewall. The correct variable to use to specify a different > firewall script is firewall_script.Yes, but Dennis wants to specify the rules file, non the script, no? (Yes it is also in the man page;-) -- <regisr>
For Dag from the rc.conf man page...
firewall_type
(str) Names the firewall type from the selection in
/etc/rc.firewall, or the file which contains the local
firewall ruleset. Valid selections from /etc/rc.firewall,
are ``open'' - unrestricted IP access;
``closed'' - all IP
services disabled, except via lo0; ``client'' - basic
pro-
tection for a workstation; ``simple'' - basic
protection
for a LAN. If a filename is specified, the full path must
be given.
I could edit rc.firewall, or specify a different script with firewall_script,
but it seemed more convenient to simply specify a "rules file". If
anyone knows how this can be done, I would appreciate a response.
Thanks,
Dennis>
> On 03-Feb-2004 Dag-Erling Smørgrav wrote:
> > firewall_type is used to select one of several standard setups in
> > /etc/rc.firewall. The correct variable to use to specify a different
> > firewall script is firewall_script.
>
> Yes, but Dennis wants to specify the rules file, non the script, no?
> (Yes it is also in the man page;-)
>
> --
> <regisr>
> _______________________________________________
> freebsd-stable@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to
"freebsd-stable-unsubscribe@freebsd.org"
Seems that Dennis has wrong
style in conf file. If dmesg
shows ipfw(2) up, if he has
"firewall_type=/etc/firewall.local"
in /etc, it must be something
more mundane. If not a sec-
ret, what are rules?
ZK
On Mon, 2 Feb 2004, Dennis Antunes wrote:> When specifying: firewall_type="/etc/firewall.local" in rc.conf, loading > of my config file fails with: ipfw: bad arguments, for usage summary > ``ipfw''What do you have in /etc/firewall.local? -- Doug White | FreeBSD: The Power to Serve dwhite@gumbysoft.com | www.FreeBSD.org