Add a firewall_flags option that is used when ipfw processes a file. It allows
you to run a preprocessor, such as m4, so that you can use macros in your rules file. Approved by: jkh
This commit is contained in:
paul
parent
3d2242deb0
commit
1526ff49b0
@ -47,6 +47,7 @@ firewall_enable="NO" # Set to YES to enable firewall functionality
|
||||
firewall_script="/etc/rc.firewall" # Which script to run to set up the firewall
|
||||
firewall_type="UNKNOWN" # Firewall type (see /etc/rc.firewall)
|
||||
firewall_quiet="NO" # Set to YES to suppress rule display
|
||||
firewall_flags="" # Flags passed to ipfw when type is a file
|
||||
natd_program="/sbin/natd" # path to natd, if you want a different one.
|
||||
natd_enable="NO" # Enable natd (if firewall_enable == YES).
|
||||
natd_interface="fxp0" # Public interface or IPaddress to use.
|
||||
|
||||
@ -229,7 +229,7 @@ case ${firewall_type} in
|
||||
;;
|
||||
*)
|
||||
if [ -r "${firewall_type}" ]; then
|
||||
${fwcmd} ${firewall_type}
|
||||
${fwcmd} ${firewall_flags} ${firewall_type}
|
||||
fi
|
||||
;;
|
||||
esac
|
||||
|
||||
Loading…
Reference in New Issue
Block a user