From owner-freebsd-newbies@FreeBSD.ORG Mon Sep 1 07:20:43 2003 Return-Path: Delivered-To: freebsd-newbies@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id ECB0716A4BF for ; Mon, 1 Sep 2003 07:20:43 -0700 (PDT) Received: from altrade.nijmegen.internl.net (altrade.nijmegen.internl.net [217.149.192.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id C331E43FE0 for ; Mon, 1 Sep 2003 07:20:42 -0700 (PDT) (envelope-from nico.meijer@zonnet.nl) Received: from debian by altrade.nijmegen.internl.net id h81EKfFC020043 (8.12.9/2.04); Mon, 1 Sep 2003 16:20:41 +0200 (MET DST) Date: Mon, 1 Sep 2003 16:20:42 +0200 From: Nico Meijer To: freebsd-newbies@freebsd.org Message-Id: <20030901162042.6a33ae19.nico.meijer@zonnet.nl> In-Reply-To: <004001c37085$3d45ed20$05191eac@tvwebmaster2> References: <20030830190107.0A39816A4DD@hub.freebsd.org> <002001c36fee$246fc470$05191eac@tvwebmaster2> <20030831210421.400b0810.nico.meijer@zonnet.nl> <004001c37085$3d45ed20$05191eac@tvwebmaster2> X-Mailer: Sylpheed version 0.9.4 (GTK+ 1.2.10; i686-pc-linux-gnu) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: iptables X-BeenThere: freebsd-newbies@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Gathering place for new users List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Sep 2003 14:20:44 -0000 Hi Taulant, > but there's another problem :) Of course there is. ;-) > every command that I'm trying to use it says: > ipfw: getsockopt(IP_FW_GET): Protocol not available > I don't know if there's anything that I should install first and than > use IPFW Yes, you need to build a custom kernel. Suggestion: copy /usr/src/sys/[arch]/conf/GENERIC to ~/MYKERNEL (your regular user's homedir); in /usr/src/sys/[arch]/conf issue "ln -s ~/MYKERNEL". Now you can edit your kernel config logged in as your regular user. You don't want to run around as root if you don't have to, so get sudo up and running. Edit MYKERNEL, add: options IPFIREWALL # required for IPFW options IPFIREWALL_VERBOSE # optional; logging options IPFIREWALL_VERBOSE_LIMIT=10 # optional; don't get too many log entries options IPDIVERT # needed for natd See the Handbook for building that kernel. I don't know if the buildkernel/installkernel sequence works if you have only installed the kernel source. HTH... Nico P.S. Read the Handbook. Do it now. It is good for you. :-)