From owner-freebsd-questions@FreeBSD.ORG  Sat Nov 22 18:05:27 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 82346106564A
	for <freebsd-questions@freebsd.org>;
	Sat, 22 Nov 2008 18:05:27 +0000 (UTC)
	(envelope-from m0rchand@comcast.net)
Received: from QMTA01.westchester.pa.mail.comcast.net
	(qmta01.westchester.pa.mail.comcast.net [76.96.62.16])
	by mx1.freebsd.org (Postfix) with ESMTP id 2E9778FC17
	for <freebsd-questions@freebsd.org>;
	Sat, 22 Nov 2008 18:05:27 +0000 (UTC)
	(envelope-from m0rchand@comcast.net)
Received: from OMTA07.westchester.pa.mail.comcast.net ([76.96.62.59])
	by QMTA01.westchester.pa.mail.comcast.net with comcast
	id iG5J1a0031GhbT851J5So9; Sat, 22 Nov 2008 18:05:26 +0000
Received: from [10.0.1.200] ([76.122.47.225])
	by OMTA07.westchester.pa.mail.comcast.net with comcast
	id iJ5P1a00h4rWgJL3TJ5Q7a; Sat, 22 Nov 2008 18:05:24 +0000
X-Authority-Analysis: v=1.0 c=1 a=0a8QS4E3CMl0BXmrZkUA:9
	a=50bPtPJbA76-trr6xuVOXqVXcUgA:4 a=WuK_CZDBSqoA:10
Message-Id: <4F82B04B-6BD8-473A-AD9F-1A0101004722@comcast.net>
From: Tom Marchand <m0rchand@comcast.net>
To: freebsd-questions@freebsd.org
In-Reply-To: <20081122163631.F7674@wojtek.tensor.gdynia.pl>
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v929.2)
Date: Sat, 22 Nov 2008 13:05:23 -0500
References: <6B2C3766-25F4-454F-9597-12186B564060@comcast.net>
	<20081122002501.P3638@wojtek.tensor.gdynia.pl>
	<BBA74CAD-5F63-4E4E-BE18-8424ED5FEEC2@comcast.net>
	<20081122163631.F7674@wojtek.tensor.gdynia.pl>
X-Mailer: Apple Mail (2.929.2)
Subject: Re: IPFW Rule
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 22 Nov 2008 18:05:27 -0000


On Nov 22, 2008, at 10:37 AM, Wojciech Puchar wrote:

>>> rule looks OK, but your message clearly suggest you DO NOT have IP  
>>> forwarding enabled
>>
>> Interesting sysctl reports that forwarding is enabled:
>>
>> $ sysctl -a |grep forward
>> net.inet.ip.forwarding: 1
>>
> it's not that. it's about routing, not ipfw forwarding
>
> you need
>
> IPFIREWALL_FORWARD
>
> option in kernel.

Thanks that was it.