Subject: Re: admin script for ipfilter
To: Geert Hendrickx <>
From: Darren Reed <>
List: tech-userlevel
Date: 12/27/2006 14:33:53
On Wed, Dec 27, 2006 at 11:16:50AM +0100, Geert Hendrickx wrote:
> On Wed, Dec 27, 2006 at 12:04:47AM +0000, Darren Reed wrote:
> > So...the attached script, "ipfadm", I'm curious for feedback on.
> >=20
> > The idea is to do "ipfadm enable ipfilter" or "ipfadm disable ipfilter"
> > and it updates the relevant rc.d config file for you.
> >=20
> > Ok, not catchy...
> >=20
> > What I hope is of more interest is doing "ipfadm ipfilter status",
> > where it will tell you if it is enabled, disabled, enabled but no rules,
> > or disabled but rules loaded.
> >=20
> > Feedback welcome.
> Why not generalise this to "rc.dadmin enable/disable/status XXX" to toggle
> arbitrary startup scripts?  You could still add ipfilter-specific hooks (=
> well as for other rc.d scripts) for the "status" command.

Well, it would be called "rcadmin", o=7Fnot "rc.dadmin" (puke).

Let me think about this.

If the naming for ipfilter were to change such that ipfilter became
ipf and ipfilter was something else, how bad would that be?