From owner-freebsd-bugs@FreeBSD.ORG Tue Jun 7 15:00:24 2011 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1D8061065673 for ; Tue, 7 Jun 2011 15:00:24 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 96A1B8FC14 for ; Tue, 7 Jun 2011 15:00:21 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p57F0LAS009784 for ; Tue, 7 Jun 2011 15:00:21 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p57F0L1t009783; Tue, 7 Jun 2011 15:00:21 GMT (envelope-from gnats) Resent-Date: Tue, 7 Jun 2011 15:00:21 GMT Resent-Message-Id: <201106071500.p57F0L1t009783@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Viktor Štujber Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EA8AD1065673 for ; Tue, 7 Jun 2011 14:58:28 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22]) by mx1.freebsd.org (Postfix) with ESMTP id DB2AB8FC12 for ; Tue, 7 Jun 2011 14:58:28 +0000 (UTC) Received: from red.freebsd.org (localhost [127.0.0.1]) by red.freebsd.org (8.14.4/8.14.4) with ESMTP id p57EwSoQ077233 for ; Tue, 7 Jun 2011 14:58:28 GMT (envelope-from nobody@red.freebsd.org) Received: (from nobody@localhost) by red.freebsd.org (8.14.4/8.14.4/Submit) id p57EwSNC077232; Tue, 7 Jun 2011 14:58:28 GMT (envelope-from nobody) Message-Id: <201106071458.p57EwSNC077232@red.freebsd.org> Date: Tue, 7 Jun 2011 14:58:28 GMT From: Viktor Štujber To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Cc: Subject: kern/157689: ipfw nat config does not accept nonexistent interfaces X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 07 Jun 2011 15:00:24 -0000 >Number: 157689 >Category: kern >Synopsis: ipfw nat config does not accept nonexistent interfaces >Confidential: no >Severity: non-critical >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Tue Jun 07 15:00:21 UTC 2011 >Closed-Date: >Last-Modified: >Originator: Viktor Štujber >Release: 8.2-PRERELEASE >Organization: >Environment: FreeBSD poring 8.2-PRERELEASE FreeBSD 8.2-PRERELEASE #4: Sun Feb 20 13:15:15 CET 2011 umage@poring:/usr/obj/usr/src/sys/PORING i386 >Description: ipfw accepts rules for interfaces that do not (yet) exist, and makes them work seamlessly as the interfaces come and go. However, the 'ipfw nat' addon feature is not compatible with ipfw's interface handling philosophy. >How-To-Repeat: # ipfw add 60000 allow via foobar 60000 allow ip from any to any via foobar ^-- works # ipfw nat 100 config if foobar ipfw: unknown interface name foobar ^-- doesn't work >Fix: A workaround using cloned_interfaces was suggested. This preemptively creates a dummy interface to satisfy ipfw. >Release-Note: >Audit-Trail: >Unformatted: