D47346.id145693.diff
No OneTemporary
Actions

Size

1 KB

Referenced Files

None

Subscribers

None

D47346.id145693.diff
View Options

	diff --git a/libexec/rc/rc.conf b/libexec/rc/rc.conf
	--- a/libexec/rc/rc.conf
	+++ b/libexec/rc/rc.conf
	@@ -214,6 +214,7 @@
	ipfilter_rules="/etc/ipf.rules" # rules definition file for ipfilter, see
	# /usr/src/contrib/ipfilter/rules for examples
	ipfilter_flags="" # additional flags for ipfilter
	+ipfilter_optionlist="" # optionlist for ipf(8) -T
	ippool_enable="NO" # Set to YES to enable ip filter pools
	ippool_program="/sbin/ippool" # where the ippool program lives
	ippool_rules="/etc/ippool.tables" # rules definition file for ippool
	diff --git a/libexec/rc/rc.d/ipfilter b/libexec/rc/rc.d/ipfilter
	--- a/libexec/rc/rc.d/ipfilter
	+++ b/libexec/rc/rc.d/ipfilter
	@@ -33,6 +33,12 @@
	ipfilter_start()
	{
	echo "Enabling ipfilter."
	+ if [ -n "${ifilter_optionlist}" ]; then
	+ if [ `sysctl -n net.inet.ipf.fr_running` -gt 0 ]; then
	+ ${ipfilter_program:-/sbin/ipf} -D
	+ fi
	+ ${ipfilter_program:-/sbin/ipf} -T "${ipfilter_optionlist}"
	+ fi
	if ! ${ipfilter_program:-/sbin/ipf} -V \| grep -q 'Running: yes'; then
	${ipfilter_program:-/sbin/ipf} -E
	fi