Discussion:
where can kernel firewall options be found?
(too old to reply)
Ernie Luzar
2016-07-06 12:41:12 UTC
Permalink
Hello list,

I want to compile ipfilter into the kernel. Where do I find the option
statements?
Polytropon
2016-07-06 13:22:01 UTC
Permalink
Post by Ernie Luzar
I want to compile ipfilter into the kernel. Where do I find the option
statements?
They are listed in /usr/src/sys/conf/NOTES:

options IPFILTER #ipfilter support
options IPFILTER_LOG #ipfilter logging
options IPFILTER_LOOKUP #ipfilter pools
options IPFILTER_DEFAULT_BLOCK #block all packets by default
--
Polytropon
Magdeburg, Germany
Happy FreeBSD user since 4.0
Andra moi ennepe, Mousa, ...
Shane Ambler
2016-07-07 00:26:03 UTC
Permalink
Post by Polytropon
Post by Ernie Luzar
I want to compile ipfilter into the kernel. Where do I find the option
statements?
According to the handbook page for ipfilter, it is available with the
generic kernel, meaning you don't need to build a custom kernel to use it.

https://www.freebsd.org/doc/en/books/handbook/firewalls-ipf.html

You can disable building ipfilter by adding WITHOUT_IPFILTER to
/etc/src.conf before building your system.
Post by Polytropon
options IPFILTER #ipfilter support
options IPFILTER_LOG #ipfilter logging
options IPFILTER_LOOKUP #ipfilter pools
options IPFILTER_DEFAULT_BLOCK #block all packets by default
In case your not sure what to do with those options the handbook
explains how to build a custom kernel.

https://www.freebsd.org/doc/en/books/handbook/kernelconfig-config.html
--
FreeBSD - the place to B...Software Developing

Shane Ambler
Loading...