From owner-FreeBSD-users-jp@jp.freebsd.org  Thu Jan  4 13:31:55 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id NAA39333;
	Thu, 4 Jan 2001 13:31:55 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from sv01.geocities.co.jp (sv01.geocities.co.jp [210.153.89.155])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id NAA39328
	for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 4 Jan 2001 13:31:55 +0900 (JST)
	(envelope-from ml1@geocities.co.jp)
Received: from mail.geocities.co.jp (mail.geocities.co.jp [210.153.89.137]) by sv01.geocities.co.jp (8.9.3+3.2W/3.7W) with ESMTP id NAA14518 for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 4 Jan 2001 13:31:54 +0900 (JST)
Received: from UNKNOWN-DX (saitama0306-169223.zero.ad.jp [211.16.169.223]) by mail.geocities.co.jp (1.3G-GeocitiesJ-3.3) with SMTP id NAA06158 for <FreeBSD-users-jp@jp.freebsd.org>; Thu, 4 Jan 2001 13:31:53 +0900 (JST)
Message-Id: <200101040431.NAA06158@mail.geocities.co.jp>
X-Sender: ml1@geocities.co.jp
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5-J (32)
Date: Thu, 04 Jan 2001 13:31:49 +0900
To: FreeBSD-users-jp@jp.freebsd.org
From: "Y.Nakayama" <ml1@geocities.co.jp>
Mime-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 57997
Subject: [FreeBSD-users-jp 57997] Re: IPFW or IP Filter ?
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: ml1@geocities.co.jp

$BCg;3$G$9!#(B
$B$*JV;v$"$j$,$H$&$4$6$$$^$9!#(B


At 07:56 2001/01/04 +0900, you wrote:
-----8< snip 8<-----
>  > $B$H$3$m$G:F3NG'$J$N$G$9$,!"0J2<$N%3%^%s%I$O!"(B
>  > $B:F5/F0;~$K$OL58z$K$J$C$F$$$k(B($B$H;W$o$l$k(B)$B$N$G!"(B
>  > 
>  > # kldload ipl
>  > # ipf -F a -f /etc/ipf.conf
>  > 
>  > $B4JC1$J%7%'%k%9%/%j%W%H$+$J$s$+$r=q$$$F!"5/F0;~$K<B9T$5$;$k(B...
>  > $B$H$$$&$N$,!"(Bserver $BMQES$H$7$F$O<BMQE*$+$H;W$&$N$G$9$,!"(B
>  > $BG!2?$G$7$g$&$+!)(B
>  > ### $B7k9=!":F5/F0;~$K!"<jF0$@$HN)$A>e$2$k$N$rK:$l$k%Q%?!<%s$C$F(B
>  > ### $B$"$j$^$9$h$M!)(B
> 
> $B;d$N>l9g(Bkld$B$G$O$J$/$F(Bkarnel$BAH$_9~$_$G;H$C$F$$$k$N$G;v>p$,0[$J$k(B
> $B$+$b$7$l$^$;$s$,!"(B
> 
>   kldload $B$O$I$N%?%$%_%s%0$G<B9T$5$;$F$$$^$9$+(B?
>   ipf $B$O$I$N%?%$%_%s%0$G<B9T$7BP>]$H$7$F;H$C$F$$$k$N$O$I$N(B
>   $B%$%s%?!<%U%'!<%9$G$9$+(B?


$BEz$($K$J$C$F$$$k$+$I$&$+J,$+$j$^$;$s$,!"(B
/usr/local/etc/rc.d/ $B0J2<$K!"K\Ev$K4JC1$J%7%'%k%9%/%j%W%H$rCV$-$^$7$?!#(B
                             ~~~~~~~~~~~~
$B0J2<!"FbMF$G$9!#(B

ipf.sh
--------------------------------------------------
#!/bin/sh
kldload ipl && ipf -F a -f /etc/ipf.conf
--------------------------------------------------


$B%?%$%_%s%0$O!"%7%9%F%`$N5/F0;~$K(B
-----8< snip 8<-----
starting standard daemons: cron sendmail sshd
(3 $B9T!"N,(B)
Local package initialization:IP Filter: v3.4.8 initialized.  Default = pass
all,
 Logging = enabled

$B$H!"=P$F$-$^$9!#(B
$B%$%s%?!<%U%'!<%9$N0UL#$r<h$j0c$($F$$$k$+$bCN$l$^$;$s$,!"(Bed0 $B$G$9!#(B

$B$A$J$_$K(B dmesg $B$,:N$l$?$N$G!"2<$KIU$1$^$9!#(B

# dmesg | tail
----------------------------------------------------------------------------
----
Mounting root from ufs:/dev/da0s1a
cd0 at ahc0 bus 0 target 3 lun 0
cd0: <IBM CDRM00203\\000\\000\\000\\000\\000!K BZ26> Removable CD-ROM
SCSI-2 device 
cd0: 5.000MB/s transfers (5.000MHz, offset 15)
cd0: cd present [325649 x 2048 byte records]
da0 at ahc0 bus 0 target 0 lun 0
da0: <IBM DORS-32160    !# WA3E> Fixed Direct Access SCSI-2 device 
da0: 20.000MB/s transfers (20.000MHz, offset 15), Tagged Queueing Enabled
da0: 2063MB (4226725 512 byte sectors: 255H 63S/T 263C)
IP Filter: v3.4.8 initialized.  Default = pass all, Logging = enabled
----------------------------------------------------------------------------
----


Y.Nakayama.

