Date: Fri, 26 Aug 2022 16:26:26 +0700 From: Eugene Grosbein <eugen@grosbein.net> To: Wojciech Puchar <wojtek@puchar.net> Cc: freebsd-hackers@freebsd.org Subject: Re: ipfw nat problem Message-ID: <57a9cad0-c2ef-6e1f-2185-0f7563fe3758@grosbein.net> In-Reply-To: <c3ce6ec-60c7-f9b7-9c73-1fdcdfee505@puchar.net> References: <d36e56ff-c7cd-1634-dbc-f76bdb46503c@puchar.net> <623ac39e-2915-463a-9e4c-9f99bae28c69@puchar.net> <bfa7d65a-95d6-1605-8fb0-cf397b79d549@grosbein.net> <c3ce6ec-60c7-f9b7-9c73-1fdcdfee505@puchar.net>
next in thread | previous in thread | raw e-mail | index | archive | help
26.08.2022 15:04, Wojciech Puchar wrote: >>> found a reason. forwarding was set to 0 in sysctl >> >> Never set net.inet.ip.forwarding=1 manually or via /etc/sysctl.conf. >> >> Always use gateway_enable="YES" in /etc/rc.conf, or else system scripts started with devd > > I don't use devd on servers. > >> on any interface creation (tunX, ngX, etc.) will switch forwarding to 0 again. > > Well - i do create tun or other interfaces without problems. Can you point an example of this? Some scripts (f.e. from /etc/devd.conf) invoke /etc/pccard_ether $subsystem start (the name "pccard_ether" is just historic, it serves any cloned network interface). It runs "/etc/rc.d/netif quietstart" $ifn that runs "/etc/rc.d/routing static any $_if" that may reset net.inet.ip.forwarding=0 unless you have gateway_enable="YES" in /etc/rc.conf despite you could have set net.inet.ip.forwarding=1 via sysctl.conf.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?57a9cad0-c2ef-6e1f-2185-0f7563fe3758>