diff options
author | Sebastian Huber <sebastian.huber@embedded-brains.de> | 2022-05-23 15:21:17 +0200 |
---|---|---|
committer | Sebastian Huber <sebastian.huber@embedded-brains.de> | 2022-05-23 16:26:30 +0200 |
commit | 56fe2fd56ea410b2e7ac6ec8bd5f32762edbadb2 (patch) | |
tree | 0d380de967dcdbcaa1ec764246076899b4648768 /libbsd.txt | |
parent | libbsd.txt: Remove NIC status (diff) | |
download | rtems-libbsd-56fe2fd56ea410b2e7ac6ec8bd5f32762edbadb2.tar.bz2 |
libbsd.txt: Move PF description
Diffstat (limited to 'libbsd.txt')
-rw-r--r-- | libbsd.txt | 46 |
1 files changed, 0 insertions, 46 deletions
@@ -321,52 +321,6 @@ structure that were not being used were conditionally compiled out. The capability of supporting children did not appear to be needed and was not implemented in the rtems version of these routines. -== PF (Firewall) == - -It is possible to use PF as a firewall. See -[https://www.freebsd.org/doc/handbook/firewalls-pf.html] for details on the -range of functions and for how to configure the firewall. - -The following is necessary to use PF on RTEMS: - -- You have to provide a +/etc/pf.os+ file. The firewall can use it for passive - OS fingerprinting. If you don't want to use this feature, the file may contain - nothing except a line of comment (for example "# empty"). - -- If some filters use protocol names (like tcp or udp) you have to provide a - +/etc/protocols+ file. - -- If some filters use service names (like ssh or http) you have to provide a - +/etc/services+ file. - -- Create a rule file (normally +/etc/pf.conf+). See the FreeBSD manual for the - syntax. - -- Load the rule file using the pfctl command and enable pf. Please note that the - pfctl command needs a lot of stack. You should use at least - RTEMS_MINIMUM_STACK_SIZE + 8192 Bytes of stack. An example initialisation can - look like follows: - ----- - int exit_code; - char *params[] = { - "pfctl", - "-f", - "/etc/pf.conf", - "-e", - NULL - }; - - exit_code = rtems_bsd_command_pfctl(ARGC(params), params); - assert(exit_code == EXIT_SUCCSESS); ----- - -=== Known restrictions === - -- Currently PF on RTEMS always uses the configuration for memory restricted - systems (on FreeBSD that means systems with less than 100 MB RAM). This is - fixed in +pfctl_init_options()+. - == Wireless Network (WLAN) == The libbsd provides a basic support for WLAN. Note that currently this support |