(no subject)

• Previous message: Maxim Konovalov: "Re: VLAN/Bridge No response from trunk Interface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: dero@bluhayz.org
Date: Fri, 20 Jun 2003 17:27:15 -0700 (PDT)

I realized this after posting I should have included info restarting
rules and Joeseph has hit on it here, I now use
/usr/src/share/examples/ipfw/change_rules.sh that is with the standard
install for any firewall changes. It saves old rulesets, allows you to
view (syntax), then confirm rule changes. If you don't confirm within a
set number of seconds it does not install the new rules. I have yet to
cut myself off when changing remote rules using this script.

For natd changes i have a script with the line:
killall -9 natd;sleep 2;/sbin/natd -config /etc/natd.file -n fxp0 &

Perhaps someone has a more elegant method ;)

Regards, JD

> firewall rules through that, be careful, you can cut yourself off if
you are not. I always update rules in a copy of the firewall rules I
use. Run it
> with "rc.firewall.copy >/tmp/rules &". You can check the output by
looking
> at /tmp/rules. If you don't add "&" and you get cut off, the script
will
> not complete and may leave you in an unpredictable state. As long as
you
> are editing a copy of the rules, if something goes wrong, you just get
> someone to reboot the computer, it will use the original rule set. To
> minimize getting cut off, move your sshd rules of the external
interface to
> as close to the top as you can.
_______________________________________________
freebsd-net@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-net
To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

• Previous message: Maxim Konovalov: "Re: VLAN/Bridge No response from trunk Interface"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Deploying Office 07 with Group Policy ... computer I tested it on took 30 minutes to install. ... the following script to the Computer Startup Script. ... REM Get ProductName from the Office product's core Setup.xml file. ... REM Set ConfigFile to the configuration file to be used for deployment REM ... (microsoft.public.office.setup) Re: [opensuse] Editting PATH variable ... SuSEconfig script ... ... not knowing what you options you used to install ... If your unfamiliar with Bash a good book is 'Learning the Bash Shell' by ... For Java use editing the PATH variable is NOT required... ... (SuSE) Re: trusted sites ... Script Debugging Problem ... checks whether the browser can handle Shockwave Flash so I suspect there may ... There is good information concerning all aspects of the Java situation here: ... Sun also offers an automatic download and install of the 1.4 Java plug-in ... (microsoft.public.windows.inetexplorer.ie6.browser) Re: KB911280 update problem ... Microsoft is working on an amended patch which will address this issue. ... Microsoft advises anyone affected by this to not install the patch and to ... That script is broken by the patch. ... He said he could not write a bug report ... (microsoft.public.windowsupdate) help with a home network jumpstart ... I have the blade running BIND 8 to serve DNS to the home network. ... Here's the output of the boot net - install: ... Using RPC Bootparams for network configuration information. ... Using begin script: install_begin ... (SunManagers)