Subject: RE: IPFiler ( ipf ) for dial-up and LAN
To: Manuel Bouyer <bouyer@antioche.eu.org>
From: Daniel Brown <dbrown@inktomi.com>
List: port-i386
Date: 04/14/2002 18:02:05
On a secure network, it's a bad thing to enable routing before firewall
configuration is complete.

> > hey, cool--didn't know that.  i think one could still be justified
> > in wanting it done first though, so that when ipnat is turned on,
> > it'll 'work' right away.
>
> sysctl won't start much later I suspect
>
> > then again i suppose there could also
> > be reasons to wait too, like waiting until after the bootup finishes?
>
> I'm not sure there are reasons reasons to wait. It's just that both
> ipnat and sysctl needs to be started, but the order doesn't
> matter much.
>
> --
> Manuel Bouyer <bouyer@antioche.eu.org>
> --