From 8956ceaff076760eb051cd37f060453be0e28406 Mon Sep 17 00:00:00 2001
From: Poul-Henning Kamp <phk@FreeBSD.org>
Date: Wed, 28 Apr 2004 13:18:22 +0000
Subject: [PATCH] Initdiskless must run before ipfw, or people will not be able
 to use the conf/* stuff for their firewall configuration.

Running ipfw before could seem to make sense in that it would allow
one to setup access to the NFS server on a "default-deny" kernel,
but it is pretty obvious to the casual observer that such a configuration
never makes it far enough to mount the NFS-root in the first place.
---
 etc/rc.d/initdiskless | 1 +
 etc/rc.initdiskless   | 1 +
 2 files changed, 2 insertions(+)

diff --git a/etc/rc.d/initdiskless b/etc/rc.d/initdiskless
index 1609fa8d90a4..bf49749e6915 100644
--- a/etc/rc.d/initdiskless
+++ b/etc/rc.d/initdiskless
@@ -29,6 +29,7 @@
 # REQUIRE: preseedrandom
 # PROVIDE: initdiskless
 # KEYWORD: FreeBSD nojail
+# BEFORE: ipfw
 
 
 # On entry to this script the entire system consists of a read-only root
diff --git a/etc/rc.initdiskless b/etc/rc.initdiskless
index 1609fa8d90a4..bf49749e6915 100644
--- a/etc/rc.initdiskless
+++ b/etc/rc.initdiskless
@@ -29,6 +29,7 @@
 # REQUIRE: preseedrandom
 # PROVIDE: initdiskless
 # KEYWORD: FreeBSD nojail
+# BEFORE: ipfw
 
 
 # On entry to this script the entire system consists of a read-only root