> Setting firewall_type to a file name will just ensure that no rules are > added at all, it won't match any cases in /etc/rc.firewall.
Scanning rc.network quickly, it looks like you're correct for recent -STABLE. In which case the following comments in rc.firewall should be reaped, surely?: ############ # Define the firewall type in /etc/rc.conf. Valid values are: # open - will allow anyone in # client - will try to protect just this machine # simple - will try to protect a whole network # closed - totally disables IP services except via lo0 interface # UNKNOWN - disables the loading of firewall rules. # filename - will load the rules in the given filename (full path required) #
msg45894/pgp00000.pgp
Description: PGP signature
