Date: Mon, 15 Sep 2003 20:55:01 +0100 From: Wayne Pascoe <freebsd-questions@penguinpowered.org> To: freebsd-questions@freebsd.org Subject: NAT without recompiling my kernel ? Message-ID: <20030915195501.GA10770@marvin.penguinpowered.org>
next in thread | raw e-mail | index | archive | help
Hi all, I've got ipfw working and logging without recompiling my kernel. I've now hit my next problem... Is it possible to use NAT without recompiling ? I've kldloaded the dummynet module, and included that in /boot/loader.conf, but when I reboot, I get the following in my dmesg : IP packet filtering initialized, divert disabled, rule-based forwarding enabled, default to deny, logging disabled Is there any way to set divert enabled without recompiling my kernel with IPDIVERT included? For the record, the relevant section of my rc.conf is as follows: firewall_enable="YES" firewall_type="open" firewall_quiet="NO" natd_enable="YES" When I try and add natd by doing ipfw add 50 divert natd all from any to any via xl0 I get ipfw: getsockopt(IP_FW_ADD): Invalid argument and in /var/log/messages I get Sep 15 20:54:27 marvin /kernel: ip_fw_ctl: invalid command xl0 is my private network IP by the way Regards, -- Wayne Pascoe I laugh in the face of danger... Then I run and hide until it goes away!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030915195501.GA10770>