From owner-freebsd-bugs  Sun Aug 25  5: 0:20 2002
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6002437B400
	for <freebsd-bugs@hub.freebsd.org>; Sun, 25 Aug 2002 05:00:12 -0700 (PDT)
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7BE3243E72
	for <freebsd-bugs@hub.freebsd.org>; Sun, 25 Aug 2002 05:00:11 -0700 (PDT)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.12.4/8.12.4) with ESMTP id g7PC0BJU063273
	for <freebsd-bugs@freefall.freebsd.org>; Sun, 25 Aug 2002 05:00:11 -0700 (PDT)
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.12.4/8.12.4/Submit) id g7PC0BT0063272;
	Sun, 25 Aug 2002 05:00:11 -0700 (PDT)
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8CE8937B400
	for <FreeBSD-gnats-submit@freebsd.org>; Sun, 25 Aug 2002 04:55:33 -0700 (PDT)
Received: from itworks.com.au (dsl-210-15-243-112.Melbourne.netspace.net.au [210.15.243.112])
	by mx1.FreeBSD.org (Postfix) with SMTP id E795443E3B
	for <FreeBSD-gnats-submit@freebsd.org>; Sun, 25 Aug 2002 04:55:30 -0700 (PDT)
	(envelope-from gavin@itworks.com.au)
Received: (qmail 29665 invoked by uid 0); 25 Aug 2002 11:54:36 -0000
Message-Id: <20020825115436.29664.qmail@itworks.com.au>
Date: 25 Aug 2002 11:54:36 -0000
From: Gavin Cameron <gavin@itworks.com.au>
Reply-To: Gavin Cameron <gavin@itworks.com.au>
To: FreeBSD-gnats-submit@FreeBSD.org
X-Send-Pr-Version: 3.113
Subject: kern/41996: IPFW2 forward rule fails
Sender: owner-freebsd-bugs@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-bugs.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-bugs>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-bugs>
X-Loop: FreeBSD.org


>Number:         41996
>Category:       kern
>Synopsis:       IPFW2 forward rule fails
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Sun Aug 25 05:00:10 PDT 2002
>Closed-Date:
>Last-Modified:
>Originator:     Gavin Cameron
>Release:        FreeBSD 4.6-STABLE i386
>Organization:
>Environment:
System: FreeBSD chip.gav.itworks.com.au 4.6-STABLE FreeBSD 4.6-STABLE #32: Sat Aug 24 23:13:23 EST 2002 gavin@chip.gav.itworks.com.au:/home2/src/FreeBSD/src/sys/compile/CHIP i386


	
>Description:

I've just enable IPFW2 on my -stable box.

Under IPFW I had a rule that forwarded outgoing mail to a local
port which had an encryption package listening on it. This
functionality worked fine.

Under IPFW2 the rule does not forward the packet to the local port.

The rule is

	add 3500 fwd 127.0.0.1,26 tcp from any to mail-server 25 out

I can talk to 127.0.0.1:26 just fine. Telneting to mail-server:25
gives

	telnet: connect to address xxx.xxx.xxx.xxx: Connection refused
	telnet: Unable to connect to remote host


	
>How-To-Repeat:

As above.
	
>Fix:

	


>Release-Note:
>Audit-Trail:
>Unformatted:

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message