Proposal for adding "firewall_myservices_udp" in etc/rc.conf

Allan Jude allanjude at freebsd.org
Mon Oct 13 15:38:00 UTC 2014


On 2014-10-10 16:38, Olivier Cochard-Labbé wrote:
> For a simple workstation, we can use this simple configuration in
> /etc/rc.conf:
> firewall_type="workstation"
> firewall_enable="YES"
> firewall_myservices="22,80"
> firewall_allowservices="any"
> 
> But the firewall_myservices allows only TCP services.
> It's not possible to declare UDP services (like a torrent client).
> 
> This patch propose to add UDP services by 2 changes:
> 1. firewall_myservices became a deprecated alias, the new is
> firewall_myservices_tcp
> 2. A new firewall_myservices_udp variable is added.
> 
> Patch attached to PR194292:
> https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=194292
> 
> What do you think ?
> _______________________________________________
> freebsd-current at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-current
> To unsubscribe, send any mail to "freebsd-current-unsubscribe at freebsd.org"
> 

I see this as quite reasonable. I'll add some notes about it to the
handbook if the patch is accepted.

-- 
Allan Jude

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 834 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-current/attachments/20141013/37d64965/attachment.sig>


More information about the freebsd-current mailing list