Date: Thu, 5 Dec 2002 14:12:29 +0200 From: Vallo Kallaste <kalts@estpak.ee> To: Rob B <rbyrnes@ozemail.com.au> Cc: freebsd-stable <freebsd-stable@freebsd.org>, freebsd-alpha <freebsd-alpha@freebsd.org> Subject: Re: ipfw troubles Message-ID: <20021205121229.GA2000@tiiu.internal> In-Reply-To: <001201c29c53$32067da0$3164a8c0@pootah> References: <001201c29c53$32067da0$3164a8c0@pootah>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Dec 05, 2002 at 08:49:05AM +1100, Rob B <rbyrnes@ozemail.com.au> wrote: > Recently compiled a new kernel for my Multia to do some firewalling. Now, > when trying to show the current rules, I get this: > > [root@doormat]/root: ipfw list > 00000 ip from any to any [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] > [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] [opcode > 0 len 0] [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] > [opcode 0 len 0] [opcode 0 len 0] [opcode 0 len 0] [opcode 0 ^C > > Relevant kernel options are as follows: > > options ICMP_BANDLIM #Rate limit bad replies > options RANDOM_IP_ID #See ../../i386/conf/LINT > options IPFIREWALL #firewall > options IPFIREWALL_VERBOSE #enable logging to syslogd(8) > options IPFIREWALL_FORWARD #enable transparent proxy support > options IPFIREWALL_VERBOSE_LIMIT=500 #limit verbosity > options IPDIVERT #Divert sockets > options DUMMYNET #Bandwidth limiter > options HZ=200 You have mixed IPFW and IPFW2, your kernel firewalling code version differs from userspace utility version. It's handled by some /etc/make.conf knob, read up ipfw(8). -- Vallo Kallaste kalts@estpak.ee To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021205121229.GA2000>