From 12a71f864c957a5aa5ffb66749bbc014fec619af Mon Sep 17 00:00:00 2001 From: Denis Peplin Date: Fri, 11 Feb 2005 07:24:19 +0000 Subject: [PATCH] Fix several minor grammatical and spelling errors, changes several and sections to , and where required PR: docs/77370 (slightly modified) Submitted by: David Adam --- .../books/handbook/firewalls/chapter.sgml | 31 +++++++++---------- 1 file changed, 15 insertions(+), 16 deletions(-) diff --git a/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml b/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml index 6ee5557e25..f1d8a29c07 100644 --- a/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml +++ b/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml @@ -822,12 +822,11 @@ LOG_ERR - packets which have been logged and which can be considered shortSymbolic fields do not have the $ prefix. - The value to populate the Symbolic field must be enclosed - with "double quotes". + The value to populate the symbolic field must be enclosed + with double quotes ("). Start your rule file with something like this: - ############# Start of IPF rules script ######################## oif="dc0" # name of the outbound interface @@ -836,7 +835,7 @@ myip="192.0.2.7" # my static IP address from ISP ks="keep state" fks="flags S keep state" -# You can chose between building /etc/ipf.rules file +# You can choose between building /etc/ipf.rules file # from this script or running this script "as is". # # Uncomment only one line and comment out another. @@ -860,25 +859,25 @@ EOF ################## End of IPF rules script ######################## That is all there is to it. The rules are not important in - this example; how the Symbolic substitution field are populated + this example; how the symbolic substitution fields are populated and used are. If the above example was in a file named /etc/ipf.rules.script, - you could reload these rules by entering this on the command - line: + you could reload these rules by entering the following + command: - sh /etc/ipf.rules.script - + &prompt.root; sh /etc/ipf.rules.script + There is one problem with using a rules file with embedded - symbolics. IPF do not understand symbolic substitution, and - can not read such scripts directly. + symbolics: IPF does not understand symbolic substitution, and + cannot read such scripts directly. This script can be used in one of two ways: - Uncomment line that begins from cat - and comment out line that begins from - /sbin/ipf. Place + Uncomment the line that begins with cat, + and comment out the line that begins with + /sbin/ipf. Place ipfilter_enable="YES" into /etc/rc.conf as usual, and run script once after each modification to create or update @@ -903,11 +902,11 @@ sh /etc/ipf.rules.script The permissions on this script file must be read, write, execute for owner root. - chmod 700 /usr/local/etc/rc.d/ipf.loadrules.sh + &prompt.root; chmod 700 /usr/local/etc/rc.d/ipf.loadrules.sh - Now, when your system boots your IPF rules will be + Now, when your system boots, your IPF rules will be loaded.