I have ng network with ng_bridge connected to ng_ether and ng_eiface connected to this bridge.
I create jail with vnet.interface = ngeth0. After running ipfw on the host, I automatically get the default rule "65535 deny ip from any to any" in the jail.
Is this correct behaviour? How can i turn it off? Or change default rule to "allow ip from any to any"? Adding "firewall_type=open" to rc.conf only work for host,
not jail.
I create jail with vnet.interface = ngeth0. After running ipfw on the host, I automatically get the default rule "65535 deny ip from any to any" in the jail.
Is this correct behaviour? How can i turn it off? Or change default rule to "allow ip from any to any"? Adding "firewall_type=open" to rc.conf only work for host,
not jail.