IPFW IPFW blocking alias IP and not using script on boot

D

d33k4y

I've adding IPFW to kernel.
Code: 
options IPFIREWALL 
options IPFIREWALL_VERBOSE 
options IPFIREWALL_VERBOSE_LIMIT=10
and added
Code: 
firewall_enable="YES"
firewall_script="/usr/local/etc/IPFW.rules"
to /etc/rc.conf.

The issues I'm now having:

1. On boot it never loads /usr/local/etc/IPFW.rules just loads the default "...deny ip from any to any"?
2. After I manually load IPFW.rules via ( sh /usr/local/etc/IPFW.rules) rules are the correct but I cannot access an alias IP address that is running bind.

All local 192.168.0.100 services like sshd(8) httpd all running and following rules after manual script run.

Services on alias 192.168.0.101 such as named are all blocked.

So 2 main questions for now,
1. Why will it not run /usr/local/etc/IPFW.rules on boot when even thou I added
Code: 
firewall_script="/usr/local/etc/IPFW.rules"
to rc.conf.

2. How can I add access to alias IP.
A bit tired hope this makes sense.

Thank you in advance.
 
It's case sensitive. For rc.conf it's
Code: 
firewall_enable="YES"
firewall_type="/usr/local/etc/IPFW.rules"
For type you can put in a prepackaged setting or your own file.

For your KERNCONF it's:
Code: 
options     IPFIREWALL
I add
Code: 
options    IPFIREWALL_DEFAULT_TO_ACCEPT
then load the script from rc.conf. This is all for IPFW.
 
Sorry I was very tired when I wrote this last night. I did check /etc/rc.conf and it had the proper case as you stated.
Code: 
firewall_enable="YES"
firewall_script="/usr/local/etc/IPFW.rules"
I also tried using...
Code: 
firewall_type="/usr/local/etc/IPFW.rules"
As opposed to the firewall_script, but still boots default. My rules only start after I run sh /usr/local/etc/IPFW.rules and then I cannot access my alias ip, where named is listening, from other computers in that network.
 
You must log in or register to reply here.
Back
Top