From owner-freebsd-questions@FreeBSD.ORG  Thu Mar 25 11:34:18 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4723316A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Mar 2004 11:34:18 -0800 (PST)
Received: from ns1.tiadon.com (SMTP.tiadon.com [69.27.132.161])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 0C04143D2D
	for <freebsd-questions@freebsd.org>;
	Thu, 25 Mar 2004 11:34:18 -0800 (PST)	(envelope-from kdk@daleco.biz)
Received: from daleco.biz ([69.27.131.0]) by ns1.tiadon.com with Microsoft
	SMTPSVC(6.0.3790.0);	 Thu, 25 Mar 2004 13:34:51 -0600
Message-ID: <40633437.4060505@daleco.biz>
Date: Thu, 25 Mar 2004 13:34:15 -0600
From: "Kevin D. Kinsey, DaleCo, S.P." <kdk@daleco.biz>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6) Gecko/20040322
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: JP <planoprez@yahoo.com>
References: <20040325185943.50074.qmail@web40110.mail.yahoo.com>
In-Reply-To: <20040325185943.50074.qmail@web40110.mail.yahoo.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 25 Mar 2004 19:34:52.0093 (UTC)
	FILETIME=[3E34C6D0:01C412A0]
cc: freebsd-questions@freebsd.org
Subject: Re: NATd error Message
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Mar 2004 19:34:18 -0000

JP wrote:

>Hey Gang--
>
>I recompiled my kernel to include support for firewall
>and such.  
>
>
>  
>

OK, we kinda know what you mean.  So I'll kinda
give you an answer.  You kinda did something
wrong ;-)

Seriously, exactly what did you add to your kernel
config?

>
>After creating my rules file, fwrules and
>rebooting this is the error I am getting:
>
>natdnatd: Unable to create divert socket.  Protocol
>not supported
>
>Can someone explain whats wrong?
>
>Thanks
>
>  
>

I'm guessing that either you didn't add

        options IPDIVERT

       to your kernel, or your didn't do
gateway_enable="yes" in /etc/rc.conf.

If the latter is the case, try issuing

        #sysctl net.inet.ip.forwarding=1

       and then try natd.

HTH,

Kevin Kinsey
DaleCo, S.P.