ipfilter revision 1.11
1 #!/bin/sh 2 # 3 # $NetBSD: ipfilter,v 1.11 2004/08/13 18:08:03 mycroft Exp $ 4 # 5 6 # PROVIDE: ipfilter 7 # REQUIRE: root beforenetlkm mountcritlocal tty 8 9 $_rc_subr_loaded . /etc/rc.subr 10 11 name="ipfilter" 12 rcvar=$name 13 start_precmd="ipfilter_prestart" 14 start_cmd="ipfilter_start" 15 stop_precmd="test -f /etc/ipf.conf -o -f /etc/ipf6.conf" 16 stop_cmd="ipfilter_stop" 17 reload_precmd="$stop_precmd" 18 reload_cmd="ipfilter_reload" 19 resync_precmd="$stop_precmd" 20 resync_cmd="ipfilter_resync" 21 status_precmd="$stop_precmd" 22 status_cmd="ipfilter_status" 23 extra_commands="reload resync status" 24 25 ipfilter_prestart() 26 { 27 if [ ! -f /etc/ipf.conf ] && [ ! -f /etc/ipf6.conf ]; then 28 warn "/etc/ipf*.conf not readable; ipfilter start aborted." 29 # 30 # If booting directly to multiuser, send SIGTERM to 31 # the parent (/etc/rc) to abort the boot 32 # 33 if [ "$autoboot" = yes ]; then 34 echo "ERROR: ABORTING BOOT (sending SIGTERM to parent)!" 35 kill -TERM $$ 36 exit 1 37 fi 38 return 1 39 fi 40 return 0 41 } 42 43 ipfilter_start() 44 { 45 echo "Enabling ipfilter." 46 /sbin/ipf -E -Fa 47 if [ -f /etc/ipf.conf ]; then 48 /sbin/ipf -f /etc/ipf.conf 49 fi 50 if [ -f /etc/ipf6.conf ]; then 51 /sbin/ipf -6 -f /etc/ipf6.conf 52 fi 53 } 54 55 ipfilter_stop() 56 { 57 echo "Disabling ipfilter." 58 /sbin/ipf -D 59 } 60 61 ipfilter_reload() 62 { 63 echo "Reloading ipfilter rules." 64 65 /sbin/ipf -I -Fa 66 if [ -f /etc/ipf.conf ] && ! /sbin/ipf -I -f /etc/ipf.conf; then 67 err 1 "reload of ipf.conf failed; not swapping to new ruleset." 68 fi 69 if [ -f /etc/ipf6.conf ] && ! /sbin/ipf -I -6 -f /etc/ipf6.conf; then 70 err 1 "reload of ipf6.conf failed; not swapping to new ruleset." 71 fi 72 /sbin/ipf -s 73 } 74 75 ipfilter_resync() 76 { 77 /sbin/ipf -y 78 } 79 80 ipfilter_status() 81 { 82 /sbin/ipf -V 83 } 84 85 load_rc_config $name 86 run_rc_command "$1" 87
Indexes created Wed Oct 29 12:09:47 GMT 2025