From muir@idiom.com  Wed Mar 13 00:12:33 1996
Received: from idiom.com (idiom.com [140.174.82.4])
          by freefall.freebsd.org (8.7.3/8.7.3) with SMTP id AAA11851
          for <FreeBSD-gnats-submit@freebsd.org>; Wed, 13 Mar 1996 00:12:32 -0800 (PST)
Received: (from muir@localhost) by idiom.com (8.6.12/8.6.12) id AAA05830; Wed, 13 Mar 1996 00:12:25 -0800
Message-Id: <199603130812.AAA05830@idiom.com>
Date: Wed, 13 Mar 1996 00:12:25 -0800
From: David Muir Sharnoff <muir@idiom.com>
Reply-To: muir@idiom.com
To: FreeBSD-gnats-submit@freebsd.org
Subject: ipfw command doesn't work on 2.1-STABLE
X-Send-Pr-Version: 3.2

>Number:         1077
>Category:       bin
>Synopsis:       ipfw command doesn't work on 2.1-STABLE
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    phk
>State:          closed
>Quarter:
>Keywords:
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Mar 13 00:20:01 PST 1996
>Closed-Date:    Wed Apr 3 06:01:04 PST 1996
>Last-Modified:  Wed Apr  3 06:02:13 PST 1996
>Originator:     David Muir Sharnoff
>Release:        FreeBSD 2.1-STABLE i386
>Organization:
Idiom Consulting
>Environment:

>Description:

	Perhaps I messed up on some step...

	I sup'ed over a cvs tree.   I checked out the RELENG_2_1_0
	tag.  I built a kernel...

	I installed it on my test system.  No network.  Looked at
	ipfw.  Compiled /sbin/ipfw.  Installed it.  

	No dice: it says "missing action".

	The command I'm giving:

	ipfw add 32000 accept all from any to any

	I've tried reasonable alternatives.  

	The version of ipfw.c that I have is 1.15.4.2.  Is that
	what I should be using?  If not, what's the right tag for
	2.1-STABLE?

>How-To-Repeat:

>Fix:

	I think the default deny rule should be something that people
	have to compile in if they want it.  It's too destructive 
	for novices and the unwary.  It's a good thing I read many of
	the freebsd mailing lists 'cuase if I didn't I wouldn't have 
	thought to go look at ipfw.

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->phk 
Responsible-Changed-By: phk 
Responsible-Changed-When: Mon Apr 1 05:26:06 PST 1996 
Responsible-Changed-Why:  
I'm on this one. 
State-Changed-From-To: open->closed 
State-Changed-By: phk 
State-Changed-When: Wed Apr 3 06:01:04 PST 1996 
State-Changed-Why:  
Fixed.  Made the syntax more forgiving and thus also accepting the syntax 
in the doc. 

The default rule must be deny all for security reasons. 
>Unformatted:
