current-users: Re: HEADS UP: IPFilter upgraded to 3.4.29

Subject: Re: HEADS UP: IPFilter upgraded to 3.4.29
To: None <current-users@netbsd.org>
From: Martti Kuparinen <martti.kuparinen@iki.fi>
List: current-users
Date: 09/20/2002 09:15:01

On Thu, 19 Sep 2002, Andrew Brown wrote:

> if you don't like it, you can always add
>
> 	options 	IPFILTER_DEFAULT_BLOCK

Should we have this in /sys/arch/*/conf/GENERIC (or maybe GENERIC*)?
I can do it if that's what people want...


Index: GENERIC
===================================================================
RCS file: /cvsroot/syssrc/sys/arch/i386/conf/GENERIC,v
retrieving revision 1.509
diff -u -r1.509 GENERIC
--- GENERIC	2002/09/18 02:44:00	1.509
+++ GENERIC	2002/09/20 06:10:12
@@ -162,6 +162,7 @@
 options 	PPP_FILTER	# Active filter support for PPP (requires bpf)
 options 	PFIL_HOOKS	# pfil(9) packet filter hooks
 options 	IPFILTER_LOG	# ipmon(8) log support
+#options	IPFILTER_DEFAULT_BLOCK	# block all packets by default
 #options 	TCP_DEBUG	# Record last TCP_NDEBUG packets with SO_DEBUG


Martti

---
Martti Kuparinen <martti.kuparinen@iki.fi>      NetBSD - No media hype
http://www.iki.fi/kuparine/                     http://www.netbsd.org/