From owner-freebsd-questions@FreeBSD.ORG Sat Nov 22 14:02:42 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4FCC410656D5 for ; Sat, 22 Nov 2008 14:02:42 +0000 (UTC) (envelope-from eagletree@hughes.net) Received: from smtprelay.b.hostedemail.com (smtprelay0053.b.hostedemail.com [64.98.42.53]) by mx1.freebsd.org (Postfix) with ESMTP id F1B318FC13 for ; Sat, 22 Nov 2008 14:02:41 +0000 (UTC) (envelope-from eagletree@hughes.net) Received: from filter.hostedemail.com (b-bigip1 [10.5.19.254]) by smtprelay03.b.hostedemail.com (Postfix) with SMTP id 1EFD048A247 for ; Sat, 22 Nov 2008 14:02:41 +0000 (UTC) X-SpamScore: 1 X-Spam-Summary: 2, 0, 0, 4ec9a89b7c58b6b6, 9510f55e4507d164, eagletree@hughes.net, freebsd-questions@freebsd.org, RULES_HIT:355:379:541:564:599:601:945:946:966:967:973:980:988:989:1260:1261:1277:1311:1313:1314:1345:1359:1437:1515:1516:1518:1534:1541:1593:1594:1711:1730:1747:1766:1792:1981:2196:2199:2393:2525:2553:2559:2563:2682:2685:2857:2859:2933:2937:2939:2942:2945:2947:2951:2954:3022:3027:3352:3743:3834:3865:3867:3869:3870:3871:3872:3873:3874:3876:3877:3934:3936:3938:3941:3944:3947:3950:3953:3956:3959:4250:4385:4560:4860:5007:6114:6119:7652:7679:7903:8501:8784:9010:9025:9036:9388, 0, RBL:none, CacheIP:none, Bayesian:0.5, 0.5, 0.5, Netcheck:none, DomainCache:0, MSF:not bulk, SPF:, MSBL:none, DNSBL:none Received: from [192.168.0.3] (dpc6744118153.direcpc.com [67.44.118.153]) (Authenticated sender: eagletree@hughes.net) by omf11.b.hostedemail.com (Postfix) with ESMTP for ; Sat, 22 Nov 2008 14:02:37 +0000 (UTC) Mime-Version: 1.0 (Apple Message framework v753) In-Reply-To: References: <6B2C3766-25F4-454F-9597-12186B564060@comcast.net> <20081122002501.P3638@wojtek.tensor.gdynia.pl> Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: Content-Transfer-Encoding: 7bit From: Chris Pratt Date: Sat, 22 Nov 2008 06:02:32 -0800 To: FreeBSD-Questions Questions X-Mailer: Apple Mail (2.753) X-session-marker: 6561676C6574726565406875676865732E6E6574 Subject: Re: IPFW Rule X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Nov 2008 14:02:42 -0000 On Nov 22, 2008, at 5:43 AM, Tom Marchand wrote: > > On Nov 21, 2008, at 6:25 PM, Wojciech Puchar wrote: > >>> I am trying to add a IPFW rule to forward traffic but I keep >>> getting the message "ipfw: getsockopt(IP_FW_ADD): Invalid >>> argument". The rule I am trying to add looks like this: >>> >>> ipfw add 600 fwd 192.169.2.3, 6000 tcp from 192.169.2.3 to any 80 >>> >>> I do have IP Forwarding enabled. Any ideas what I am doing wrong? >> >> rule looks OK, but your message clearly suggest you DO NOT have IP >> forwarding enabled > > Interesting sysctl reports that forwarding is enabled: > > $ sysctl -a |grep forward > net.inet.ip.forwarding: 1 > > IP forwarding is enabled in GENERIC isn't it? I am running 6.1- > RELEASE FreeBSD 6.1-RELEASE I'm looking at a 6.2 box that does forwarding. The GENERIC kernel does not have this line: options IPFIREWALL_FORWARD In my kernel, I am using that. Recollection is you need this specified explicitly. I could be wrong. > #0._______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions- > unsubscribe@freebsd.org" >