From owner-freebsd-questions Tue Feb 20 11:28:17 2001 Delivered-To: freebsd-questions@freebsd.org Received: from home.offwhite.net (home.offwhite.net [156.46.35.30]) by hub.freebsd.org (Postfix) with ESMTP id 1CDB637B65D for ; Tue, 20 Feb 2001 11:28:12 -0800 (PST) (envelope-from brennan@offwhite.net) Received: from localhost (brennan@localhost) by home.offwhite.net (8.11.1/8.11.1) with ESMTP id f1KJSAB27132 for ; Tue, 20 Feb 2001 13:28:10 -0600 (CST) (envelope-from brennan@offwhite.net) Date: Tue, 20 Feb 2001 13:28:10 -0600 (CST) From: Brennan Stehling To: freebsd-questions@freebsd.org Subject: ip_fw_ctl: invalid command Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG What am I missing? I am trying to run this command. ipfw add 100 divert natd ip from any to any via ep1 I ran this command before trying this... cd /dev sh MAKEDEV ipl This created devices for ipnat and others and I am unsure if I need to make a device for the ipfw software and divert sockets. I am running 4.2 and just compiled a new kernel from sources with the firewall options on and it does not seem to allow it yet. And now when I try to add the firewall rule for the divert sockets so that I can run ipnat, I get these error messages. ip_fw_ctl: invalid command ipfw: getsockopt(IP_FW_ADD): invalid argument I originally tried simply loading the ipl.ko and ipfw.ko kernel modules but now I have a kernel built with the firewall options compiled in. I have been reading various man pages and I do not know what to do so that I can get this divert rule into the firewall to allow for NAT. Does anyone know what will allow me to make this work? Brennan Stehling - software developer and system administrator my projects: home.offwhite.net (free personal hosting) www.greasydaemon.com (bsd search) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message