From owner-freebsd-questions Mon Jan 29 11:47:48 2001 Delivered-To: freebsd-questions@freebsd.org Received: from itouch.co.nz (itouch.co.nz [203.99.66.188]) by hub.freebsd.org (Postfix) with ESMTP id 6B1E637B69D for ; Mon, 29 Jan 2001 11:47:29 -0800 (PST) Received: (from jonc@localhost) by itouch.co.nz (8.11.1/8.11.1) id f0TJl5J92692; Tue, 30 Jan 2001 08:47:05 +1300 (NZDT) (envelope-from jonc) Date: Tue, 30 Jan 2001 08:47:05 +1300 From: Jonathan Chen To: "Andrew J. Siegel" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ipfw/nat Message-ID: <20010130084705.C91522@itouchnz.itouch> References: <20010124100643.B39995@itouchnz.itouch> <007401c0868a$41870370$768a0218@htfdw1.ct.home.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <007401c0868a$41870370$768a0218@htfdw1.ct.home.com>; from structure@home.com on Wed, Jan 24, 2001 at 11:49:51PM -0500 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Wed, Jan 24, 2001 at 11:49:51PM -0500, Andrew J. Siegel wrote: > IPDIVERT enabled, RULE-BASED FORWARDING ENABLED Please. Send the list a copy of your dmesg output. Make sure you aren't loading ipfw.ko from /boot/loader.conf. -- Jonathan Chen ---------------------------------------------------------------------- Computers are like air conditioners. They stop working when you open Windows. > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Jonathan Chen > Sent: Tuesday, January 23, 2001 4:07 PM > To: Andrew J. Siegel > Cc: freebsd-questions@FreeBSD.ORG > Subject: Re: ipfw/nat > > > On Tue, Jan 23, 2001 at 03:42:12PM -0500, Andrew J. Siegel wrote: > > Alright just installed 4.2 w/ sysinstall....added options IPFIREWALL > options > > IPDIVER options IPFIREWALL_FORWARD all to my kernnel config (icebox2) > > config'd and compile....did sysctl -a | grep fw...and fw.enable is set to > > 1....ipfw show issues one allow all for static commands, and something > > unknown for dynamic commands.. > > > > try adding ipfw add 500 divert natd all from any to any via rl0 > > > > and receive error: > > ipfw: getsockopt(IP_FW_ADD) INVALID ARGUMENT > > This usually indicates that you haven't *installed* a kernel with > IPDIVERT options set. Send the list of your dmesg output. > -- > Jonathan Chen | To do is to be -- Nietzsche > | To be is to do -- Sartre To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message