# [EMAIL PROTECTED] / 2003-11-26 12:13:53 -0600:
> In the last episode (Nov 26), fbsd_user said:
> > Looking for way to code IPFILTER rules with shell symbolic
> > substitution. I know how to do it in the rules, but how to get ipf
> > pgm to exec in shell? Any body have example of how to setup this
On Wed, Nov 26, 2003 at 02:59:00PM -0500, fbsd_user wrote:
> Ipf.test rules file
> #!/bin/sh
> nic="l0"
> /sbin/ipf -Fa -f - < pass in on $nic all
> pass out on $nic all
> pass in all
> pass out all
> EOF
>
> Any ideas about what is wrong with my ipfilter_rules="/etc/ipf.test"
> statement.
The i
Ipf.test rules file
#!/bin/sh
nic="l0"
/sbin/ipf -Fa -f - <mailto:[EMAIL PROTECTED] Behalf Of Mike
Maltese
Sent: Wednesday, November 26, 2003 1:41 PM
To: [EMAIL PROTECTED] ORG
Cc: Dan Nelson
Subject: Re: IPFILTER rules with shell symbloic substitution
> /etc/rc.firewall has
> /etc/rc.firewall has lots of examples using ipfw; the concepts should
> work just as well with ipf.
I'm not sure that's true. /etc/rc.firewall is a shell script, an IP Filter
ruleset isn't. From the documentation and my own use of it, IP Filter
doesn't support variable substitution. If you're ru
In the last episode (Nov 26), fbsd_user said:
> Looking for way to code IPFILTER rules with shell symbolic
> substitution. I know how to do it in the rules, but how to get ipf
> pgm to exec in shell? Any body have example of how to setup this?
/etc/rc.firewall has lots of examples using ipfw; the
