Displaying 6 results from an estimated 6 matches for "ipfilter_default_block".
2003 Sep 29
4
IPFILTER_DEFAULT_BLOCK & No route to host
Hi,
After the option IPFILTER_DEFAULT_BLOCK is specified at kernel conf on FreeBSD 4.8 stable (cvsup'd
with tag RELENG_4_8), the machine cannot be ping'd by others on the same network.
In addition, the machine cannot ping itself.
ping localhost (or 127.0.0.1) -> no route to host
ping itself with its own ip address -> no route...
2003 Sep 29
4
IPFILTER_DEFAULT_BLOCK & No route to host
Hi,
After the option IPFILTER_DEFAULT_BLOCK is specified at kernel conf on FreeBSD 4.8 stable (cvsup'd
with tag RELENG_4_8), the machine cannot be ping'd by others on the same network.
In addition, the machine cannot ping itself.
ping localhost (or 127.0.0.1) -> no route to host
ping itself with its own ip address -> no route...
2003 Aug 07
1
problems with ipfilter on 5.1-RELEASE
...ve a couple of issues that are
probably not very serious...
one thing is that during network startup at boot, i get the message
IPFilter: already initialized
repeated 4 times.
i think i have everything configured properly
my kernel config looks like
options IPFILTER
options IPFILTER_LOG
options IPFILTER_DEFAULT_BLOCK
my /etc/rc.conf looks like
ipfilter_enable="YES"
ipfilter_flags=""
ipfilter_rules="/etc/ipfilter.rules"
ipmon_enable="YES"
ipmon_flags="-Dsvn"
the other problem i have is that: it now seems that ipmon is logging to
/var/log/messages. i've se...
2004 Aug 10
2
Error With Kernel Module IPFILTER
I've found out from two different kernel configs
that after properly compling kernel with IPFILTER support
it causes the system not to boot. Its hard to say, what exactly it does, cause its not a local system.
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
2006 Jul 14
1
Any ongoing effort to port /etc/rc.d/pf_boot, /etc/pf.boot.conf from NetBSD ?
....d/pf_boot and
>> related config files) from NetBSD to FreeBSD ?
>>
>> This would close small (but as far as I understand existing)
>> window during boot where firewall is fully open (if using only
>> pf).
>
> I'd prefer to have PF_DEFAULT_BLOCK analogous to IPFILTER_DEFAULT_BLOCK
> instead of some magic script closing the hole between driver init and
> configuration. Always wondered how the OpenBSD -securety minded- people
> have come up with a packet filter that's open by default.
There has been discussion about this before. I know that perfect
solution woul...
2003 Aug 13
6
5.1-R-p2 crashes on SMP with AMI RAID and Intel 1000/Pro
...#options IPFIREWALL_DEFAULT_TO_ACCEPT
#options IPV6FIREWALL
#options IPV6FIREWALL_VERBOSE
#options IPV6FIREWALL_VERBOSE_LIMIT=100
#options IPV6FIREWALL_DEFAULT_TO_ACCEPT
options IPDIVERT
#options IPFILTER
#options IPFILTER_LOG
#options IPFILTER_DEFAULT_BLOCK
options IPSTEALTH
options RANDOM_IP_ID
options ACCEPT_FILTER_DATA
#options ACCEPT_FILTER_HTTP
options TCP_DROP_SYNFIN
options DUMMYNET
#options BRIDGE
options QUOTA
options _KPOSIX_PRIORITY_SCHEDULING
options P1003_1B_SEMAP...