Date: Tue, 27 Feb 2001 17:06:38 -0600 (CST) From: Brennan Stehling <brennan@offwhite.net> To: Jonathan Chen <jonathan.chen@itouch.co.nz> Cc: "G. Jason Middleton" <gmiddl1@gl.umbc.edu>, freebsd-questions@FreeBSD.ORG Subject: Re: ipfw: getsockopt(IP_FW_ADD): Invalid argument Message-ID: <Pine.BSF.4.21.0102271705030.75177-100000@home.offwhite.net> In-Reply-To: <20010228110607.C45483@itouchnz.itouch>
next in thread | previous in thread | raw e-mail | index | archive | help
I tried loadin the ipfw.ko kernel module with kldload and it did not seem
to have the IPDIVERT ability. I even went to /dev and ran...
sh MAKDEV ipl
It did not allow me to do that divert rule. I may be mistaken. I will
have to reboot my PC into FreeBSD and boot up with the default kernel to
find out. I will post what I find to the list.
Brennan Stehling - software developer and system administrator
my projects:
home.offwhite.net (free personal hosting)
www.greasydaemon.com (bsd search)
On Wed, 28 Feb 2001, Jonathan Chen wrote:
> [Please do *NOT* remove the Cc: freebsd-questions]
>
> On Tue, Feb 27, 2001 at 04:49:04PM -0500, G. Jason Middleton wrote:
> > my dmesg has
> >
> > IP packet filtering initialized, divert enabled, rule-based forwarding
> > enabled, default to accept, logging limited to 100 packets/entry by
> > default
>
> Hmm. In that case I can't see why it shouldn't be working.
>
> 1. Is "de0" there?
> 2. No _load lines in /boot/loader.conf? kldstat should *NOT* show
> ipfw.ko.
>
> Maybe someone else on the list can help.
> --
> Jonathan Chen <jonathan.chen@itouch.co.nz>
> ----------------------------------------------------------------------
> Computers are like air conditioners.
> They stop working when you open Windows.
>
>
> > On Wed, 28 Feb 2001, Jonathan Chen wrote:
> >
> > > On Tue, Feb 27, 2001 at 04:01:22PM -0500, G. Jason Middleton wrote:
> > > > i did! compiled with both!
> > > >
> > > > Jason
> > >
> > > Check the output of dmesg(1), it should have the line:
> > >
> > > IP packet filtering initialized, divert enabled, rule-based forwarding disabled, default to deny, logging disabled
> > >
> > > Make sure you aren't loading ipfw.ko instead.
> > > --
> > > Jonathan Chen <jonathan.chen@itouch.co.nz>
> > > ----------------------------------------------------------------------
> > > The Internet: an empirical test of the idea that a million monkeys
> > > banging on a million keyboards can produce Shakespeare
> > >
> > > >
> > > > On Wed, 28 Feb 2001, Jonathan Chen wrote:
> > > >
> > > > > On Tue, Feb 27, 2001 at 03:12:15PM -0500, G. Jason Middleton wrote:
> > > > > > I get this error when i am tryign tio set up my firewall....i have it set
> > > > > > to open...even when i try to use ipfw :
> > > > > > /sbin/ipfw add 500 divert 8668 all from any to any via de0
> > > > > >
> > > > > > i get
> > > > > >
> > > > > > ipfw: getsockopt(IP_FW_ADD): Invalid argument
> > > > >
> > > > > Did you compile your kernel with:
> > > > >
> > > > > options IPFIREWALL
> > > > > options IPDIVERT
> > > > >
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0102271705030.75177-100000>