From owner-freebsd-questions@FreeBSD.ORG Tue Jun 21 18:45:57 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C291616A41C for ; Tue, 21 Jun 2005 18:45:57 +0000 (GMT) (envelope-from luck@computerking.ca) Received: from mail1.computerking.ca (mail1.computerking.ca [68.146.204.152]) by mx1.FreeBSD.org (Postfix) with ESMTP id A36A443D53 for ; Tue, 21 Jun 2005 18:45:57 +0000 (GMT) (envelope-from luck@computerking.ca) Received: from mail1.computerking.ca (localhost.computerking.ca [127.0.0.1]) by mail1.computerking.ca (Postfix) with ESMTP id 499BB6C25F for ; Tue, 21 Jun 2005 02:00:44 -0600 (MDT) Received: from [192.168.0.1] (unknown [192.168.0.1]) by mail1.computerking.ca (Postfix) with ESMTP id DF7996C25E for ; Tue, 21 Jun 2005 02:00:43 -0600 (MDT) Message-ID: <42B7C8E7.6020102@computerking.ca> Date: Tue, 21 Jun 2005 01:59:35 -0600 From: RYAN vAN GINNEKEN User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.5) Gecko/20041217 X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP Subject: ipf and ipnat X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 21 Jun 2005 18:45:57 -0000 Hello all i use FreeBSD stable 4.11 and wish to use ipf i have been using ipfw with type set to open however i have recently been attacked and need to beef up security. I have followed the basic setup that is in the freebsd handbook only differance is i added a few lines here and there to my ruleset. Everything seems to work fine when i have ipfirewall compiled into my kernel. When i remove the ipfirewall options ie IPFIREWALL, IPDIVERT everhting seems to break. Adding IPFILTER to the kernel does not help ethier. what is going on how do i enable ipf and ipnat and disable ipfw and natd. I had ipf working once but now it is broken and so is ipfw i have a broken bsd box please help.