[BACK]Return to ipfilter CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / etc / rc.d

Annotation of src/etc/rc.d/ipfilter, Revision 1.1

1.1     ! lukem       1: #!/bin/sh
        !             2: #
        !             3: # $NetBSD$
        !             4: #
        !             5:
        !             6: # PROVIDE: ipfilter
        !             7: # REQUIRE: root beforenetlkm mountcritlocal tty
        !             8:
        !             9: . /etc/rc.subr
        !            10: . /etc/rc.conf
        !            11:
        !            12: name="ipfilter"
        !            13: start_cmd="ipfilter_start"
        !            14: stop_precmd="checkyesno ipfilter && [ -f /etc/ipf.conf ]"
        !            15: stop_cmd="ipfilter_stop"
        !            16: reload_precmd="$stop_precmd"
        !            17: reload_cmd="ipfilter_reload"
        !            18:
        !            19: ipfilter_start()
        !            20: {
        !            21:        if [ ! checkyesno ipfilter ]; then
        !            22:                return 0
        !            23:        fi
        !            24:
        !            25:        #       if /etc/ipf.conf isn't readable, abort the boot rather
        !            26:        #       than risk a security problem
        !            27:        #
        !            28:        if [ ! -f /etc/ipf.conf ]; then
        !            29:                err 1 "/etc/ipf.conf not readable; ipfilter start aborted."
        !            30:        fi
        !            31:        echo "Enabling ipfilter."
        !            32:        /sbin/ipf -E -Fa -f /etc/ipf.conf
        !            33: }
        !            34:
        !            35: ipfilter_stop()
        !            36: {
        !            37:        echo "Disabling ipfilter."
        !            38:        /sbin/ipf -D
        !            39: }
        !            40:
        !            41: ipfilter_reload()
        !            42: {
        !            43:        echo "Reloading ipfilter rules."
        !            44:        /sbin/ipf -I -Fa -f /etc/ipf.conf
        !            45:        if [ $? -eq 0 ]; then
        !            46:                /sbin/ipf -s
        !            47:        else
        !            48:                warn "Reload failed; not swapping to new ruleset."
        !            49:        fi
        !            50: }
        !            51:
        !            52: run_rc_command "$1" "reload"

CVSweb <webmaster@jp.NetBSD.org>