From owner-freebsd-questions Tue Feb 15 8: 6:17 2000 Delivered-To: freebsd-questions@freebsd.org Received: from vail.net (vail.net [199.45.148.10]) by builder.freebsd.org (Postfix) with ESMTP id 769C7442C for ; Tue, 15 Feb 2000 08:06:11 -0800 (PST) Received: from gatekeeper.cfcc.com (cfcc.com [204.144.216.251]) by vail.net (8.9.3/8.9.3) with ESMTP id JAA21597; Tue, 15 Feb 2000 09:01:50 -0700 (MST) Received: from ibis.ivanfetch.tzo.com (168.191.172.24 [168.191.172.24]) by gatekeeper.cfcc.com with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.1960.3) id CYDH58DR; Tue, 15 Feb 2000 09:10:06 -0700 Date: Tue, 15 Feb 2000 09:05:01 -0700 (MST) From: Ivan Fetch X-Sender: ifetch@ibis.ivanfetch.tzo.com To: Adam Wiggins Cc: freebsd-questions@FreeBSD.ORG Subject: Re: divert In-Reply-To: <200002141135.SM00233@adam> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello, On Mon, 14 Feb 2000, Adam Wiggins wrote: [....] > Mainly I set the proper options for natd_* in rc.conf, but the rc.firewall > command to add the divert line is failing. Doing it manually I see: > > # ipfw add 100 divert natd all from any to any via mx1 > 00100 divert 8668 ip from any to any via mx1 > ipfw: setsockopt(IP_FW_ADD): Invalid argument > # I had the above due to my kernel - the stock kernel does not include the options you need. Copy /sys/i386/conf/GENERIC to something like /sys/i386/conf/NEWKERNEL and add the following lines: options IPFIREWALL options IPDIVERT then run: /usr/sbin/config NEWKERNEL Change to /sys/i386/compile/NEWKERNEL and run: make depend make make install Hope this helps -- Ivan. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message