From owner-freebsd-questions  Sun Aug 19  3:18:35 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from aragorn.neomedia.it (aragorn.neomedia.it [195.103.207.6])
	by hub.freebsd.org (Postfix) with ESMTP id 2A47937B40C
	for <questions@freebsd.org>; Sun, 19 Aug 2001 03:18:28 -0700 (PDT)
	(envelope-from bartequi@neomedia.it)
Received: (from httpd@localhost)
	by aragorn.neomedia.it (8.11.4/8.11.4) id f7JAIMr31938;
	Sun, 19 Aug 2001 12:18:22 +0200 (CEST)
To: Jeremy <slicetech@earthlink.net>
Subject: Re: Getting IPFW to work
Message-ID: <998216302.3b7f926e40290@webmail.neomedia.it>
Date: Sun, 19 Aug 2001 12:18:22 +0200 (CEST)
From: Salvo Bartolotta <bartequi@neomedia.it>
Cc: questions@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
User-Agent: IMP/PHP IMAP webmail program 2.2.4-cvs
X-WebMail-Company: Neomedia s.a.s.
X-Originating-IP: 62.98.162.242
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

> Dear Sir or Madam,

> I am trying to get NATD/IPFW to run correctly and am having some trouble,
> when trying to pass a rule, any rule, to IPFW I get "IPFW:
> getsockopt(IP_FW_ADD): protocol not available".  My system configuration is
> as follows:

> Pentium 166mmx w/ 32MB RAM, FreeBSD4.2RELEASE running a GENERIC kernel with
> options IPFIREWALL, IPFIREWALL_FORWARD, and IPDIVERT compiled in.




<since nobody has answered, I'll make an attempt>

The protocol is NOT available while you have ACTUALLY compiled in the options. 
BTW, my kernel has almost the same options as yours, and it DOES work on my 
4.4-PRERELEASE system. Right now.

Incidentally, ipfw can also be loaded as a module, not sure whether 
FreeBSD-4.2 can do that. From what you have just said, I am afraid not. 






> So far I have tried:
> cvsupped and build world,
> recompiled kernel multiple times with new config files,
> format/reinstall

> An example IPFW rule hat generates this error (all do) is "/sbin/ipfw add
> pass all from any to any"




What you have described above SHOULD normally work. For instance, you built 
your world and kernel, you installed them, and you ran mergemaster(8), right?

<guess type="wild">

AFAICS, the malfunction you have run into seems to indicate that ipfw is 
**NOT** compiled in your kernel whereas this is REQUIRED in your incantation 
of FreeBSD (currently 4.2 after reinstallation ?) Surely you followed the 
correct procedures when compiling your kernel and/or upgrading?

</guess>

Those procedures are extensively covered in the handbook, which you can also 
find on-line on the main FreeBSD site (http://www.freebsd.org/handbook,  
chapters 9 and 20).

If you still have problems, you might want to post more details about the 
failing procedure  -- please make one attempt at a time. Log on paper what you 
are doing, in a step-by-step fashion, then post what you have recorded.

Good luck,
Salvo

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message