Re: Firewall OS choice

To: netbsd-users%netbsd.org@localhost
Subject: Re: Firewall OS choice
From: "Michael T. Davis" <DAVISM%ecr6.ohio-state.edu@localhost>
Date: Wed, 21 Jul 2010 12:36:27 -0400 (EDT)

At 11:20:24.91 on 21-JUL-2010 in message
<20100721151853.GB5925%drowsy.duskware.de@localhost>, Martin Husemann
<martin%duskware.de@localhost> wrote:

>On Wed, Jul 21, 2010 at 11:07:00AM -0400, Michael T. Davis wrote:
>> I would like to provide for a user-specified file, so is there anything
> wrong
>> with this...?
>> 
>> config="${ipnat_conf:-/etc/ipnat.conf}"
>
>You can create a /etc/rc.conf.d/ipfilter file wich has
>
>config=/my/path/name
>
>This will be sourced before running the actual commands but after the defaults
>have been set in /etc/rc.d/ipfilter. But you better overwrite stop_precmd
>there as well.

        ...But if I'm going to need to edit /etc/rc/d/ipfilter, anyway, why
not just keep everything self-contained in that file?

        I'm really just intersted in the appropriateness of leveraging
parameter expansion in a /etc/rc.d sh script at the conceptual level.  Is
there any reason to avoid this?  If not, would my proposed change to
/etc/rc.d/ipnat work as intended?

>
>Martin

Regards,
Mike
-- 
                                         | Manager for Networking, Admin.
         Michael T. Davis (Mike)         | & Research Computing: CBE/MSE
 http://www.ecr6.ohio-state.edu/~davism/ |   The Ohio State University
                                         |   197 Watts, (614) 292-6928
              ** E-mail is the best way to contact me **

Follow-Ups:
- Re: Firewall OS choice
  - From: Chuck Swiger

Prev by Date: netbsd wiki
Next by Date: Re: Firewall OS choice
Previous by Thread: Re: Firewall OS choice
Next by Thread: Re: Firewall OS choice
Indexes:

Home | Main Index | Thread Index | Old Index