[Midnightbsd-cvs] src: rc.conf: Enable ipfw kernel module by default.
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Thu Aug 30 22:16:27 EDT 2007
Log Message:
-----------
Enable ipfw kernel module by default.
Use the new desktop configuration.
Disable verbose display of rulesets on startup. (users get confused enough by the console)
Yes, we were going to use pf, but archite@ never completed the work. I got sick of waiting and know ipfw better. Besides, it's familiar to Mac users. This ruleset is very similar to the default apple ships with ipfw enabled.
Modified Files:
--------------
src/etc/defaults:
rc.conf (r1.12 -> r1.13)
-------------- next part --------------
Index: rc.conf
===================================================================
RCS file: /home/cvs/src/etc/defaults/rc.conf,v
retrieving revision 1.12
retrieving revision 1.13
diff -Letc/defaults/rc.conf -Letc/defaults/rc.conf -u -r1.12 -r1.13
--- etc/defaults/rc.conf
+++ etc/defaults/rc.conf
@@ -102,10 +102,10 @@
dhclient_program="/sbin/dhclient" # Path to dhcp client program.
dhclient_flags="" # Additional flags to pass to dhcp client.
background_dhclient="NO" # Start dhcp client in the background.
-firewall_enable="NO" # Set to YES to enable firewall functionality
+firewall_enable="YES" # Set to YES to enable firewall functionality
firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall
-firewall_type="UNKNOWN" # Firewall type (see /etc/rc.firewall)
-firewall_quiet="NO" # Set to YES to suppress rule display
+firewall_type="DESKTOP" # Firewall type (see /etc/rc.firewall)
+firewall_quiet="YES" # Set to YES to suppress rule display
firewall_logging="NO" # Set to YES to enable events logging
firewall_flags="" # Flags passed to ipfw when type is a file
ip_portrange_first="NO" # Set first dynamically allocated port
More information about the Midnightbsd-cvs
mailing list