On Mar 27, 2008, at 6:44 PM, 2 go 2 Marketing wrote:
I am comparing it to other firewalls I have worked with.. e.g
Sidewinder Firewall by Secure Computing, Netscreen, Sonicwall,
Symantec, etc.
Oh yes, all these have *tons* of various different and sundry tools
for configuration! ;)
The issue I am referring to more specifically is how the logs
identify a problem in the configuration... here is an output of me
restarting my firewall and the log's output:
Mar 27 18:39:41 www servermgrd[7911]: servermgr_ipfilter:ipfw
config:Notice:Flushed IPv4 rules
Mar 27 18:39:41 www servermgrd[7911]: servermgr_ipfilter:ipfw
config:Error:Failure code returned by ipfw/ip6fw command: 64,
message: 'Line 29: unrecognised option [-1] from\n\n'
Mar 27 18:39:41 www servermgrd[7911]: servermgr_ipfilter:ipfw
config:Error:The invalid rule and all subsequent IPv4 rules were
skipped.
Mar 27 18:39:44 www servermgrd[7911]: servermgr_ipfilter:ipfw
config:Notice:Disabled firewall
Mar 27 18:39:45 www servermgrd[7911]: servermgr_ipfilter:ipfw
config:Notice:Enabled firewall
Nowon the second and third line, I get errors. It say look in Line
29. I have no idea where Line 29 is located.
It's line 29 of your ipfw.conf.
In any other hardware platform firewalling system, I would have a
GUI that I could see what rule that is and how to fix it. With my
Mac Server - Notice I put Mac instead of MAC for Dhan ;) - I don't
know whee to find this error in the rule and how to fix it.
This is Darwin which is a *BSD. It therefore uses ipfilter/ipfw.
So I guess in a general sense, I do like the Mac Server Software I
just think little tweaks that help aid the dummies such as myself
would be nice.
There's no need for any "tweak", just a clue in knowing where the file
is. /etc/ipfilter.
-dhan
------------------------------------------------------------------------
Dan Shoop
Computer Scientist
iWiring / U.S. Technical Services
