From owner-freebsd-questions@FreeBSD.ORG Thu Mar 25 16:30:13 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5A43C16A4CE for ; Thu, 25 Mar 2004 16:30:13 -0800 (PST) Received: from ns1.tiadon.com (SMTP.tiadon.com [69.27.132.161]) by mx1.FreeBSD.org (Postfix) with ESMTP id 201A443D46 for ; Thu, 25 Mar 2004 16:30:13 -0800 (PST) (envelope-from kdk@daleco.biz) Received: from daleco.biz ([69.27.131.0]) by ns1.tiadon.com with Microsoft SMTPSVC(6.0.3790.0); Thu, 25 Mar 2004 18:30:46 -0600 Message-ID: <40637992.8020301@daleco.biz> Date: Thu, 25 Mar 2004 18:30:10 -0600 From: "Kevin D. Kinsey, DaleCo, S.P." User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.6) Gecko/20040322 X-Accept-Language: en-us, en MIME-Version: 1.0 To: JP References: <20040325200813.53591.qmail@web40109.mail.yahoo.com> In-Reply-To: <20040325200813.53591.qmail@web40109.mail.yahoo.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 26 Mar 2004 00:30:47.0296 (UTC) FILETIME=[9521C000:01C412C9] cc: freebsd-questions@freebsd.org Subject: Re: NATd error Message X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Mar 2004 00:30:13 -0000 JP wrote: >--- "Kevin D. Kinsey, DaleCo, S.P." >wrote: > > >>JP wrote: >> >> >> >>>Hey Gang-- >>> >>>I recompiled my kernel to include support for >>> >>> >>firewall >> >> >>>and such. >>> >>> >>> >>> >>> >>> >>OK, we kinda know what you mean. So I'll kinda >>give you an answer. You kinda did something >>wrong ;-) >> >>Seriously, exactly what did you add to your kernel >>config? >> >> >> >>>After creating my rules file, fwrules and >>>rebooting this is the error I am getting: >>> >>>natdnatd: Unable to create divert socket. Protocol >>>not supported >>> >>>Can someone explain whats wrong? >>> >>>Thanks >>> >>> >>> >>> >>> >>I'm guessing that either you didn't add >> >> options IPDIVERT >> >> to your kernel, or your didn't do >>gateway_enable="yes" in /etc/rc.conf. >> >>If the latter is the case, try issuing >> >> #sysctl net.inet.ip.forwarding=1 >> >> and then try natd. >> >>HTH, >> >>Kevin Kinsey >>DaleCo, S.P. >> >> > >*grin* I added the following to my kernel: > >options IPFIREWALL >options IPFIREWALL_VERBOSE >options IPFIREWALL_VERBOSE_LIMIT=100 >options IPDIVERT > > > And, did you see the second part of my message, you top-poster, you ? ;-) KDK