The firewall_type is ignored if not set in rc.conf or rc.conf.local,

after r190575 there is an option to call rc.firewall with the firewall_type passed in as an argument. Submitted by: David P. Discher <dpd@dpdtech.com> MFC after: 3 weeks. Sponsored by: iXsystems Inc. Differential Revision: https://reviews.freebsd.org/D14286
svn path=/head/; revision=329817
2018-02-22 08:25:39 +00:00 · 2018-02-22 08:25:39 +00:00 · 61e7e50da9 · 2020-12-20 02:59:44 +00:00
commit 61e7e50da9
parent 4d87e27125
2 changed files with 15 additions and 3 deletions
--- a/etc/rc.d/ipfw
+++ b/etc/rc.d/ipfw
@ -40,7 +40,11 @@ ipfw_start()
 {
 	local   _firewall_type

+	if [ -n "${1}" ]; then
 		_firewall_type=$1
+	else
+		_firewall_type=${firewall_type}
+	fi

 	# set the firewall rules script if none was specified
 	[ -z "${firewall_script}" ] && firewall_script=/etc/rc.firewall
--- a/etc/rc.firewall
+++ b/etc/rc.firewall
@ -112,12 +112,20 @@ setup_ipv6_mandatory() {
 	${fwcmd} add pass ipv6-icmp from any to any icmp6types 2,135,136
 }

+. /etc/rc.subr
+. /etc/network.subr
+
 if [ -n "${1}" ]; then
 	firewall_type="${1}"
 fi
+if [ -z "${firewall_rc_config_load}" ]; then
+        load_rc_config ipfw
+else
+        for i in ${firewall_rc_config_load}; do
+                load_rc_config $i
+        done
+fi

-. /etc/rc.subr
-. /etc/network.subr
 afexists inet6
 ipv6_available=$?