diff options
author | ume <ume@FreeBSD.org> | 2002-11-02 08:21:26 +0000 |
---|---|---|
committer | ume <ume@FreeBSD.org> | 2002-11-02 08:21:26 +0000 |
commit | 6866e4bdcadbb5f349d46c00e275956b679f432b (patch) | |
tree | aa5ccbd31b7b338b754059e0c9d91a49b15ee782 /etc/rc.network | |
parent | 635e3ab81e29feed15a1dbbb08bea9455a49423a (diff) | |
download | FreeBSD-src-6866e4bdcadbb5f349d46c00e275956b679f432b.zip FreeBSD-src-6866e4bdcadbb5f349d46c00e275956b679f432b.tar.gz |
Add IPv6 setup for ipfilter. `ipv6_ipfilter_rules' was added
to specify rules definition file for ipfilter. The default is
/etc/ipf6.rules. If there is a file which is specified by
'ipv6_ipfilter_rules', IPv6 rule is installed.
Reviewed by: Ronald van der Pol <Ronald.vanderPol@rvdp.org>
MFC after: 1 week
Diffstat (limited to 'etc/rc.network')
-rw-r--r-- | etc/rc.network | 16 |
1 files changed, 13 insertions, 3 deletions
diff --git a/etc/rc.network b/etc/rc.network index 43d9a00..925876b 100644 --- a/etc/rc.network +++ b/etc/rc.network @@ -101,10 +101,20 @@ network_pass1() { esac case "${ipfilter_enable}" in [Yy][Ee][Ss]) - if [ -r "${ipfilter_rules}" ]; then + if [ -r "${ipfilter_rules}" -o \ + -r "${ipv6_ipfilter_rules}" ]; then echo -n ' ipfilter' - ${ipfilter_program:-/sbin/ipf} -Fa -f \ - "${ipfilter_rules}" ${ipfilter_flags} + ${ipfilter_program:-/sbin/ipf} -Fa + if [ -r "${ipfilter_rules}" ]; then + ${ipfilter_program:-/sbin/ipf} \ + -f "${ipfilter_rules}" \ + ${ipfilter_flags} + fi + if [ -r "${ipv6_ipfilter_rules}" ]; then + ${ipfilter_program:-/sbin/ipf} -6 \ + -f "${ipv6_ipfilter_rules}" \ + ${ipfilter_flags} + fi else ipfilter_enable="NO" echo -n ' NO IPF RULES' |