From owner-freebsd-net@FreeBSD.ORG  Fri Apr 25 19:43:41 2008
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 146FF106566C
	for <net@freebsd.org>; Fri, 25 Apr 2008 19:43:41 +0000 (UTC)
	(envelope-from
	SRS0=cd4a9d400e82bedad4d633473a864a6647e785d3=682=es.net=oberman@es.net)
Received: from postal1.es.net (postal1.es.net [IPv6:2001:400:14:3::6])
	by mx1.freebsd.org (Postfix) with ESMTP id 8B7D78FC1C
	for <net@freebsd.org>; Fri, 25 Apr 2008 19:43:40 +0000 (UTC)
	(envelope-from
	SRS0=cd4a9d400e82bedad4d633473a864a6647e785d3=682=es.net=oberman@es.net)
Received: from ptavv.es.net (ptavv.es.net [198.128.4.29])
	by postal1.es.net (Postal Node 1) with ESMTP (SSL) id FXQ99437
	for <net@freebsd.org>; Fri, 25 Apr 2008 12:43:37 -0700
Received: from ptavv.es.net (ptavv.es.net [127.0.0.1])
	by ptavv.es.net (Tachyon Server) with ESMTP id AFB7245010
	for <net@freebsd.org>; Fri, 25 Apr 2008 12:43:37 -0700 (PDT)
To: net@freebsd.org
Mime-Version: 1.0
Content-Type: multipart/signed; boundary="==_Exmh_1209152617_37085P";
	micalg=pgp-sha1; protocol="application/pgp-signature"
Content-Transfer-Encoding: 7bit
Date: Fri, 25 Apr 2008 12:43:37 -0700
From: "Kevin Oberman" <oberman@es.net>
Message-Id: <20080425194337.AFB7245010@ptavv.es.net>
X-Sender-IP: 198.128.4.29
X-Sender-Domain: es.net
X-Recipent: <net@freebsd.org>;
X-Sender: <oberman@es.net>
X-To_Name: 
X-To_Domain: freebsd.org
X-To: net@freebsd.org
X-To_Email: net@freebsd.org
X-To_Alias: net
Cc: 
Subject: ipfw can't be disabled for IPv56
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Apr 2008 19:43:41 -0000

--==_Exmh_1209152617_37085P
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

Running 7-STABLE of April 10, if I disable the firewall ('sysctl
net.inet.ip.fw.enable=0'), IPv4 traffic passes, but IPv6 will not. I had
to add a "allow ip from any to any" rule to get IPv6 to work pass
traffic. (Since I was accessing the system in question via IPv6, this
was a bit annoying!)

Am I missing anything? The rc.subr script for ipfw just sets the sysctl I
did when it stops the firewall.
-- 
R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: oberman@es.net			Phone: +1 510 486-8634
Key fingerprint:059B 2DDF 031C 9BA3 14A4  EADA 927D EBB3 987B 3751

--==_Exmh_1209152617_37085P
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.8 (FreeBSD)
Comment: Exmh version 2.5 06/03/2002

iD8DBQFIEjRpkn3rs5h7N1ERAqZrAKC2lanklFoXJgk/RdnZroJs9BEsawCeJNHf
yxopoc5z6LW6YwRj5M8paWY=
=sclA
-----END PGP SIGNATURE-----

--==_Exmh_1209152617_37085P--