From owner-freebsd-questions@FreeBSD.ORG Sat Nov 22 13:43:37 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2E8DD106568A for ; Sat, 22 Nov 2008 13:43:37 +0000 (UTC) (envelope-from m0rchand@comcast.net) Received: from QMTA04.westchester.pa.mail.comcast.net (qmta04.westchester.pa.mail.comcast.net [76.96.62.40]) by mx1.freebsd.org (Postfix) with ESMTP id 58B9A8FC0A for ; Sat, 22 Nov 2008 13:43:36 +0000 (UTC) (envelope-from m0rchand@comcast.net) Received: from OMTA06.westchester.pa.mail.comcast.net ([76.96.62.51]) by QMTA04.westchester.pa.mail.comcast.net with comcast id iDW21a00416LCl054DjbLm; Sat, 22 Nov 2008 13:43:35 +0000 Received: from [10.0.1.200] ([76.122.47.225]) by OMTA06.westchester.pa.mail.comcast.net with comcast id iDja1a0044rWgJL3SDjaAv; Sat, 22 Nov 2008 13:43:34 +0000 X-Authority-Analysis: v=1.0 c=1 a=NGUd9mXbLoIPfJ_2UQkA:9 a=9u-_6qxDwBM45WzLRZ_hfKkuXKMA:4 a=WuK_CZDBSqoA:10 Message-Id: From: Tom Marchand To: freebsd-questions@freebsd.org In-Reply-To: <20081122002501.P3638@wojtek.tensor.gdynia.pl> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Mime-Version: 1.0 (Apple Message framework v929.2) Date: Sat, 22 Nov 2008 08:43:33 -0500 References: <6B2C3766-25F4-454F-9597-12186B564060@comcast.net> <20081122002501.P3638@wojtek.tensor.gdynia.pl> X-Mailer: Apple Mail (2.929.2) Subject: Re: IPFW Rule X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Nov 2008 13:43:37 -0000 On Nov 21, 2008, at 6:25 PM, Wojciech Puchar wrote: >> I am trying to add a IPFW rule to forward traffic but I keep >> getting the message "ipfw: getsockopt(IP_FW_ADD): Invalid >> argument". The rule I am trying to add looks like this: >> >> ipfw add 600 fwd 192.169.2.3, 6000 tcp from 192.169.2.3 to any 80 >> >> I do have IP Forwarding enabled. Any ideas what I am doing wrong? > > rule looks OK, but your message clearly suggest you DO NOT have IP > forwarding enabled Interesting sysctl reports that forwarding is enabled: $ sysctl -a |grep forward net.inet.ip.forwarding: 1 IP forwarding is enabled in GENERIC isn't it? I am running 6.1- RELEASE FreeBSD 6.1-RELEASE #0.