Syntax to block 38 IPs
Tony Frank
tfrank at optushome.com.au
Sun Feb 8 04:49:30 PST 2004
Hi,
On Fri, Feb 06, 2004 at 10:59:03PM +0300, Vasenin Alexander aka BlackSir wrote:
> To upgrade to IPFW2 you need to recompile the kernel with IPFW2 option,
> recompile 'libalias' library and 'ipfw' control program. man ipfw would
> help. I'm not sure, but I suppose IPFW2 don't marked STABLE for 4.x
Word of advice, also recompile anything that staticly uses the libalias library.
natd specifically is one I missed which broke my system after reboot.
ipfw2 tool was built, new alias library was built but natd compiles in libalias
as a static, hence although my firewall rules loaded, everything through natd
broke (including DNS lookups which 'broke' the rest of the startup)
I resolved this by adding 'IPFW2=YES' to /etc/make.conf
Regards,
Tony
More information about the freebsd-ipfw
mailing list