MF22 - make firewall_type a little more robust
This commit is contained in:
parent
fe9a1c7666
commit
868b6abbca
@ -1,6 +1,6 @@
|
||||
############
|
||||
# Setup system for firewall service.
|
||||
# $Id: rc.firewall,v 1.13 1997/09/11 10:59:00 danny Exp $
|
||||
# $Id: rc.firewall,v 1.14 1997/09/18 22:43:42 danny Exp $
|
||||
|
||||
############
|
||||
# Define the firewall type in /etc/rc.conf. Valid values are:
|
||||
@ -62,19 +62,16 @@ $fwcmd -f flush
|
||||
# $fwcmd add 65000 pass all from any to any
|
||||
|
||||
############
|
||||
# Only in rare cases do you want to change this rule
|
||||
$fwcmd add 1000 pass all from 127.0.0.1 to 127.0.0.1
|
||||
# Only in rare cases do you want to change these rules
|
||||
$fwcmd add 1000 pass all from any to any via lo0
|
||||
$fwcmd add 1010 deny all from 127.0.0.0/8 to 127.0.0.0/8
|
||||
|
||||
|
||||
# Prototype setups.
|
||||
if [ "${firewall_type}" = "open" ]; then
|
||||
if [ "${firewall_type}" = "open" -o "${firewall_type}" = "OPEN" ]; then
|
||||
|
||||
$fwcmd add 65000 pass all from any to any
|
||||
|
||||
elif [ "${firewall_type}" = "simple" ]; then
|
||||
|
||||
$fwcmd add 65000 pass all from any to any via lo0
|
||||
|
||||
elif [ "${firewall_type}" = "client" ]; then
|
||||
|
||||
############
|
||||
@ -170,6 +167,6 @@ elif [ "${firewall_type}" = "simple" ]; then
|
||||
|
||||
# Everything else is denied as default.
|
||||
|
||||
elif [ "${firewall_type}" != "NONE" -a -r "${firewall_type}" ]; then
|
||||
elif [ "${firewall_type}" != "UNKNOWN" -a -r "${firewall_type}" ]; then
|
||||
$fwcmd ${firewall_type}
|
||||
fi
|
||||
|
Loading…
Reference in New Issue
Block a user