Subject: Re: resetting the IP packet filter rules without rebooting...
To: Sam Carleton <>
From: Steven M. Bellovin <>
List: netbsd-users
Date: 11/25/2002 09:13:26
In message <>, Sam Carleton writes:
>This subject pretty much says it all, how does one go about applying
>the IP packet filter rules (ipf.conf and ipnat.conf) without rebooting
>the NetBSD machine?
>Sam Carleton
The easiest way is to edit the files and then do

	/etc/rc.d/ipfilter reload
	/etc/rc.d/ipnat reload

(I'm less certain about the latter, since I haven't tried it.)  Make 
sure that you have ipfilter=YES in your /etc/rc.conf file.

		--Steve Bellovin, (me) ("Firewalls" book)