From owner-freebsd-questions@FreeBSD.ORG Fri Jul 9 16:00:47 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 328C816A4CE for ; Fri, 9 Jul 2004 16:00:47 +0000 (GMT) Received: from mbox.ibctech.ca (dev.eagle.ca [209.167.58.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 08F9943D31 for ; Fri, 9 Jul 2004 16:00:46 +0000 (GMT) (envelope-from iaccounts@ibctech.ca) Received: (qmail 47428 invoked by uid 1002); 9 Jul 2004 16:00:57 -0000 Received: from iaccounts@ibctech.ca by pearl.ibctech.ca by uid 89 with qmail-scanner-1.22 (clamscan: 0.73. spamassassin: 2.63. Clear:RC:1(127.0.0.1):. Processed in 1.056587 secs); 09 Jul 2004 16:00:57 -0000 Received: from unknown (HELO pearl.ibctech.ca) (127.0.0.1) by localhost.ibctech.ca with SMTP; 9 Jul 2004 16:00:55 -0000 Received: from 209.167.16.15 (SquirrelMail authenticated user steve@ibctech.ca); by pearl.ibctech.ca with HTTP; Fri, 9 Jul 2004 12:00:55 -0400 (EDT) Message-ID: <3644.209.167.16.15.1089388855.squirrel@209.167.16.15> In-Reply-To: <008b01c465cb$e7685f40$f800000a@laptop> References: <3473.209.167.16.15.1089386539.squirrel@209.167.16.15> <008b01c465cb$e7685f40$f800000a@laptop> Date: Fri, 9 Jul 2004 12:00:55 -0400 (EDT) From: "Steve Bertrand" To: "Markie" User-Agent: SquirrelMail/1.4.3a X-Mailer: SquirrelMail/1.4.3a MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal cc: freebsd-questions@freebsd.org Subject: Re: IPFIREWALL_FORWARD sysctl variable X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2004 16:00:47 -0000 > | Before I install a new kernel and have to reboot a machine, I thought > I'd > | ask if there was a sysctl variable that can toggle the IPFIREWAL_FORWARD > | option. > | > > There's net.inet.ip.forwarding but i'm not sure if it's read only or even > perhaps if it exists/works without that in the kernel. I believe that net.inet.ip.forwarding is equivilant to gateway_enable in rc.conf (enable the box as a router). I have no idea if the fwd is part of that feature or not. I can see IPFW picking up the fwd rule, but the box that it is forwarding to does not see the traffic. BTW, I am trying to forward proxy traffic from one box to another box (on a remote network) just as a test. I'll eventually implement the theory in a transparent proxy setup. I'm just going to install the kernel and see what happens. Tks for the info. Steve > > | Tks. > | > | Steve > | > | _______________________________________________ > | freebsd-questions@freebsd.org mailing list > | http://lists.freebsd.org/mailman/listinfo/freebsd-questions > | To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > >