From owner-freebsd-current  Fri Jan 31  6:25:20 2003
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D6FB737B401
	for <freebsd-current@freebsd.org>; Fri, 31 Jan 2003 06:25:18 -0800 (PST)
Received: from smtp.web.de (smtp03.web.de [217.72.192.158])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8D85743F9B
	for <freebsd-current@freebsd.org>; Fri, 31 Jan 2003 06:25:17 -0800 (PST)
	(envelope-from g.w.k@web.de)
Received: from [213.148.149.130] (helo=hunter.muc.mscsoftware.com)
	by smtp.web.de with asmtp (WEB.DE(Exim) 4.93 #1)
	id 18ec6R-0004YF-00
	for freebsd-current@freebsd.org; Fri, 31 Jan 2003 15:25:11 +0100
Subject: 5.0-R: no network connectivity with generic kernel and
	firewall_enable="YES"
From: "Georg-W. Koltermann" <g.w.k@web.de>
To: freebsd-current@freebsd.org
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
X-Mailer: Ximian Evolution 1.0.8 
Date: 31 Jan 2003 15:25:10 +0100
Message-Id: <1044023111.456.74.camel@hunter.muc.mscsoftware.com>
Mime-Version: 1.0
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-current.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-current>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-current>
X-Loop: FreeBSD.ORG

Hi,

I couldn't connect to anything on the network with my 5.0-RELEASE, with
the generic kernel and rc.conf containing

    firewall_enable="YES"
    natd_interface="fxp0"
    natd_interface="fxp0"
    natd_flags="-t 255.255.255.255"

The firewall loaded ok but natd silently vanished.  When I tried to
start natd manually it complained about divert being an unknown
protocol.

It seems ipfw can be loaded as a module but divert needs to be compiled
into the kernel.  Should this be documented, e.g. by a prominent comment
in defaults/rc.conf, right by the side of firewall_enable?

--
Regards,
Georg.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message