IPFW VIMAGE and ipfw

I've compiled a custom kernel with VIMAGE and ipfw. ipfw because from my searches it is the only firewall that works in VIMAGE jails.
However, I cannot get ipfw to block any packets in my VIMAGE jail.
Code:
IPF="ipfw -q add"
ipfw -q -f flush
$IPF 10 deny all from any to any
In the jail's /etc/rc.conf I have
Code:
firewall_script="/etc/ipfw.conf"
Yet I can ping to/from the jail which I wouldn't think I'd be able to.

How do I get a VIMAGE jail to load the ipfw rules and act on them?
 
Back
Top