Date: Sun, 18 May 2003 23:43:23 +0530 From: Shantanu Mahajan <freebsd@dhumketu.cjb.net> To: Rohit Neupane <bikrant@wlink.com.np> Cc: freebsd-questions@freebsd.org Subject: Re: Transproxy and ipfw Message-ID: <20030518181323.GA531@dhumketu.homeunix.net> In-Reply-To: <3EC723F7.9090001@wlink.com.np> References: <3EC723F7.9090001@wlink.com.np>
next in thread | previous in thread | raw e-mail | index | archive | help
+++ Rohit Neupane [freebsd] [18-05-03 11:56 +0545]: | Hi, | `ipfw add 50 fwd 127.0.0.1,3128 tcp from any to any 80` returns ipfw: | getsockopt(IP_FW_ADD): Invalid argument | | I'm running FreeBSD 4.6 with the default kernel. I guess | IPFIREWALL_FORWARD option is enabled in kernel. | Do i need to enable it in /etc/rc.conf? if so then how? | | Thanks a lot. | Regards, | Rohit Neupane | ------------------------------ options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #enable logging to syslogd(8) options IPFIREWALL_FORWARD #enable transparent proxy support options IPFIREWALL_VERBOSE_LIMIT=100 #limit verbosity options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default options IPV6FIREWALL #firewall for IPv6 options IPV6FIREWALL_VERBOSE options IPV6FIREWALL_VERBOSE_LIMIT=100 options IPV6FIREWALL_DEFAULT_TO_ACCEPT Above are the relavent options required in kernel. Other option is # kldload ipfw and then test the ipfw rule. Regards, Shantanu -- Madness has no purpose. Or reason. But it may have a goal.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030518181323.GA531>