On 10/10/05, Aaron Peterson <[EMAIL PROTECTED]> wrote:
> Thanks. The problem is it is on a production machine that I can not have down
> for any length of time. So recompiling the kernel to remove IPFW support, and
> then configuring, troubleshooting, and tweaking IPFILTER would have access
> down
On 10/10/05, Brian E. Conklin <[EMAIL PROTECTED]> wrote:
>
> So I am assuming because IPFW is built into the kernel with a "default to
> deny" option, I will need an IPFW rule allowing everything? Or, can I change
> my rc.conf to have IPFIREWALL_ENABLE="NO"?
>
IPFW can be compiled static into the
> -Original Message-
> From: Mark Cullen [mailto:[EMAIL PROTECTED]
> Sent: Friday, October 07, 2005 2:59 AM
> To: Charles Swiger
> Cc: Brian E. Conklin; freebsd-questions@freebsd.org
> Subject: Re: Converting from IPFW to IPFILTER
>
>
> Charles Swiger wrote:
Chuck Swiger wrote:
Sort of. IPF was added to FreeBSD-5 and then backported ("MFC'ed") to
the later 4.x releases.
IPF was NOT added to 5.x, PF (from OpenBSD was).
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/list
Mark Cullen wrote:
Charles Swiger wrote:
[ ... ]
If you're going to switch to using IPF, you might want to consider
upgrading or reinstalling the OS to 5.4 instead of 4.11.
Are there any particular reasons why you suggest switching from 4.11 to
5.4 if going from IPFW to IPF? Because I have
Charles Swiger wrote:
On Oct 6, 2005, at 5:44 PM, Brian E. Conklin wrote:
I am getting ready to switch a FreeBSD 4.11 machine from IPFW to
IPFILTER for better FTP and NAT support.
Hmm. Is there something natd doesn't handle for your case...?
I currently have IPFW compiled into the
On Oct 6, 2005, at 5:44 PM, Brian E. Conklin wrote:
I am getting ready to switch a FreeBSD 4.11 machine from IPFW to
IPFILTER for better FTP and NAT support.
Hmm. Is there something natd doesn't handle for your case...?
I currently have IPFW compiled into the kernel.
Do I need to
Hello Everyone,
I am getting ready to switch a FreeBSD 4.11 machine from IPFW to
IPFILTER for better FTP and NAT support.
I currently have IPFW compiled into the kernel.
Do I need to recompile a kernel without IPFW before I can enable IPF?
Can I just set IPFW to allo