[nycbug-talk] Restarting ipfw remotely

[Trish Lynch]

On Tue, 20 Dec 2005, Francisco Reyes wrote:

> is there any other/better way to restart ipfw other than "sh 
> /etc/rc.firewall"?
>
> Specially after changing a number of lines in the file and wanting to put 
> them in production.
>
> The machine is not in production yet so no worries if I lock myself out for a 
> bit. :-)

What I've taken to doing is having ipfw default to accept in the kernel, 
then having as my last line the deny all rule (65534), so it would be next 
to impossible to lock myself out if I reload or flush it.

-Trish


-- 
Trish Lynch					   trish at bsdunix.net
Ecartis Core Team 			      trish at listmistress.org
Key fingerprint = 781D 2B47 AA4B FC88 B919  0CD6 26B2 1D62 6FC1 FF16