From skafte@zaius.worldgate.ca  Fri Oct 16 17:24:38 1998
Received: from zaius.worldgate.ca (zaius.worldgate.ca [207.167.1.1] (may be forged))
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id RAA23993
          for <FreeBSD-gnats-submit@freebsd.org>; Fri, 16 Oct 1998 17:24:35 -0700 (PDT)
          (envelope-from skafte@zaius.worldgate.ca)
Received: (from skafte@localhost)
	by zaius.worldgate.ca (8.8.8/8.8.8) id SAA17187;
	Fri, 16 Oct 1998 18:24:10 -0600 (MDT)
	(envelope-from skafte)
Message-Id: <199810170024.SAA17187@zaius.worldgate.ca>
Date: Fri, 16 Oct 1998 18:24:10 -0600 (MDT)
From: skafte@zaius.worldgate.ca
Reply-To: skafte@zaius.worldgate.ca
To: FreeBSD-gnats-submit@freebsd.org
Subject: Patch for /etc/rc.firewall
X-Send-Pr-Version: 3.2

>Number:         8350
>Category:       conf
>Synopsis:       Problems with /etc/rc.firewall
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Fri Oct 16 17:30:01 PDT 1998
>Closed-Date:    Fri Jun 4 07:18:13 PDT 1999
>Last-Modified:  Fri Jun  4 07:23:36 PDT 1999
>Originator:     Greg Skafte
>Release:        FreeBSD 2.2.7-STABLE i386
>Organization:
WorldGate Inc.
>Environment:

	2.2.7-stable using a "file" for firewall definition

>Description:

	in /etc/rc.conf if you specify a filename for the firewall type
	the firewall rules don't load.

>How-To-Repeat:

	specify a filename for firewall="filename"

>Fix:
	

--- /usr/src/etc/rc.firewall	Wed Sep 16 22:24:21 1998
+++ /etc/rc.firewall	Thu Jul  2 14:27:09 1998
@@ -183,5 +168,5 @@
     # Everything else is denied as default.
 
 elif [ "${firewall_type}" != "UNKNOWN" -a -r "${firewall_type}" ]; then
-	$fwcmd ${firewall_type}
+	. ${firewall_type}
 fi
>Release-Note:
>Audit-Trail:

From: Ed Symanzik <zik@msu.edu>
To: freebsd-gnats-submit@freebsd.org, skafte@zaius.worldgate.ca
Cc: zik@msu.edu
Subject: Re: conf/8350: Problems with /etc/rc.firewall
Date: Wed, 11 Nov 1998 10:00:19 -0500

 The file should contain ipfw commands not a script.
 
 Don't put a flush command in the file.  The system will hang
 waiting for confirmation and -f doesn't apply to files.
 
 Quiet mode (-q) doesn't tolerate blank lines in the file.
 
 The file is treated as one command.  This means you must
 number your commands (if you don't want one big rule).
State-Changed-From-To: open->closed 
State-Changed-By: ru 
State-Changed-When: Fri Jun 4 07:18:13 PDT 1999 
State-Changed-Why:  
Not a problem. 
Explanation has been given. 
>Unformatted:
