ipfilter revision 1.5
1#!/bin/sh 2# 3# $NetBSD: ipfilter,v 1.5 2000/07/17 12:58:14 lukem Exp $ 4# 5 6# PROVIDE: ipfilter 7# REQUIRE: root beforenetlkm mountcritlocal tty 8 9. /etc/rc.subr 10 11name="ipfilter" 12start_precmd="ipfilter_prestart" 13start_cmd="ipfilter_start" 14stop_precmd="checkyesno ipfilter && [ -f /etc/ipf.conf ]" 15stop_cmd="ipfilter_stop" 16reload_precmd="$stop_precmd" 17reload_cmd="ipfilter_reload" 18status_precmd="$stop_precmd" 19status_cmd="ipfilter_status" 20extra_commands="reload status" 21 22ipfilter_prestart() 23{ 24 if ! checkyesno ipfilter; then 25 return 1 26 fi 27 if [ ! -f /etc/ipf.conf ]; then 28 warn "/etc/ipf.conf not readable; ipfilter start aborted." 29 return 1 30 fi 31 return 0 32} 33 34ipfilter_start() 35{ 36 echo "Enabling ipfilter." 37 /sbin/ipf -E -Fa -f /etc/ipf.conf 38} 39 40ipfilter_stop() 41{ 42 echo "Disabling ipfilter." 43 /sbin/ipf -D 44} 45 46ipfilter_reload() 47{ 48 echo "Reloading ipfilter rules." 49 /sbin/ipf -I -Fa -f /etc/ipf.conf 50 if [ $? -eq 0 ]; then 51 /sbin/ipf -s 52 else 53 warn "Reload failed; not swapping to new ruleset." 54 fi 55} 56 57ipfilter_status() 58{ 59 /sbin/ipf -V 60} 61 62load_rc_config $name 63run_rc_command "$1" 64