rc.firewall not running on startup

First off,

I've cvsup'ed to RELENG_5_1 and readout of "uname -r" is "5.1-RELEASE-p11"
Also I compiled the kernel with "options IPFIREWALL" and "options IPFIREWALL_VERBOSE"

Anyway the problem I'm having is that rc.firewall doesn't seem to run at startup. I've put 'firewall_type="open"' in rc.conf and then after booting if I type "ipfw list" it shows the default deny rule:


however if I run "sh /etc/rc.firewall" after bootup then "ipfw list" I get the correct output that I want. I won't bother listing it since it's the default "open" rules.

Anyway so the way it is now I have to run "sh /etc/rc.firewall" after bootup for the firewall rules to be registered. What I would like is for it to automagically run at startup. I thought it should do this by default but it seems not. Have I missed some option that tells freebsd to do this?

*bump*

Anyone? Please

Silly question. Have you also put this:
firewall_enable="YES"

That's where I'd put my money as well.

I just went through this the other day, the handbook fails to mention that you also need to turn this to yes... not a big deal but I did manage to lock myself out of the machine.

silly_question="YES"

I knew I was missing something. But as hedge said, none of the 4-5 online docs I've read mentioned firewall_enable.

I suppose an actual book would have answered that but I'm broke (as usual) pre-christmas.

thanks .... a lot.

[edit]
a look at /etc/defaults/rc.conf would have helped too. I really need to remmember to look at defaults and examples.
[/edit]