From owner-freebsd-questions  Mon Apr 30 18:44:39 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from cody.jharris.com (cody.jharris.com [205.238.128.83])
	by hub.freebsd.org (Postfix) with ESMTP id C7FF337B423
	for <questions@FreeBSD.ORG>; Mon, 30 Apr 2001 18:44:36 -0700 (PDT)
	(envelope-from nick@rogness.net)
Received: from localhost (nick@localhost)
	by cody.jharris.com (8.11.1/8.9.3) with ESMTP id f412sRr83987;
	Mon, 30 Apr 2001 21:54:27 -0500 (CDT)
	(envelope-from nick@rogness.net)
Date: Mon, 30 Apr 2001 21:54:27 -0500 (CDT)
From: Nick Rogness <nick@rogness.net>
X-Sender: nick@cody.jharris.com
To: John Heyer <john@snake.supranet.net>
Cc: questions@FreeBSD.ORG
Subject: Re: ipfw and natd in FreeBSD 4.3
In-Reply-To: <Pine.BSF.4.21.0104301852450.49205-100000@snake.supranet.net>
Message-ID: <Pine.BSF.4.21.0104302153360.83981-100000@cody.jharris.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Mon, 30 Apr 2001, John Heyer wrote:

> 
> When I have the following line in my ipfw rules, I get an error and the
> rule doesn't load in 4.3-RELEASE.  
> 
> ${fwcmd} add 50 divert natd all from any to any via fxp0
> 
> > sh /etc/rc.firewall.custom 
> Flushed all rules.
> 60000 allow ip from any to any
> ipfw: getsockopt(IP_FW_ADD): Invalid argument
> 60100 allow tcp from any to any established
> 
> What should I be using to startup natd?  The man page for natd still says
> I should be using ipfw


	You need to build a kernel with:

		options		IPDIVERT


	See the handbook for infor on how to build a kernel.

Nick Rogness <nick@rogness.net>
 - Keep on Routing in a Free World...
  "FreeBSD: The Power to Serve!"


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message