From owner-freebsd-current@FreeBSD.ORG  Thu Mar 13 05:41:00 2008
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: current@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id B4D3D1065670
	for <current@freebsd.org>; Thu, 13 Mar 2008 05:41:00 +0000 (UTC)
	(envelope-from bu7cher@yandex.ru)
Received: from smtp4.yandex.ru (smtp4.yandex.ru [213.180.223.136])
	by mx1.freebsd.org (Postfix) with ESMTP id 17FE58FC12
	for <current@freebsd.org>; Thu, 13 Mar 2008 05:40:59 +0000 (UTC)
	(envelope-from bu7cher@yandex.ru)
Received: from ns.kirov.so-cdu.ru ([77.72.136.145]:2527 "EHLO [127.0.0.1]"
	smtp-auth: "bu7cher" TLS-CIPHER: "DHE-RSA-AES256-SHA keybits 256/256
	version TLSv1/SSLv3" TLS-PEER-CN1: <none>) by mail.yandex.ru
	with ESMTP id S737603AbYCMFkv (ORCPT <rfc822;current@freebsd.org>);
	Thu, 13 Mar 2008 08:40:51 +0300
X-Yandex-Spam: 1 
X-Yandex-Front: smtp4
X-Yandex-TimeMark: 1205386851
X-MsgDayCount: 5
X-Comment: RFC 2476 MSA function at smtp4.yandex.ru logged sender identity as:
	bu7cher
Message-ID: <47D8BE61.5090600@yandex.ru>
Date: Thu, 13 Mar 2008 08:40:49 +0300
From: "Andrey V. Elsukov" <bu7cher@yandex.ru>
User-Agent: Mozilla Thunderbird 1.5 (FreeBSD/20051231)
MIME-Version: 1.0
To: Randy Bush <randy@psg.com>
References: <47D8438F.5050706@psg.com> <47D8B6F8.8010203@yandex.ru>
	<47D8BB02.5000303@psg.com>
In-Reply-To: <47D8BB02.5000303@psg.com>
Content-Type: text/plain; charset=KOI8-R; format=flowed
Content-Transfer-Encoding: 7bit
Cc: current@freebsd.org
Subject: Re: ipfw me6 forward
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Mar 2008 05:41:00 -0000

Randy Bush wrote:
>>> # grep IPF /sys/i386/conf/WORK0
>>> options         IPFIREWALL_FORWARD
>> You need "options  IPFIREWALL" too.
>> Seems you don't have IPFIREWALL compiled into kernel.
>> Look into `grep ipfw2 /var/run/dmesg.boot`
> 
> ipfw is working fine normally.  i load the module.

You should compile it into kernel or rebuild module with
forwarding support. For example:
# cd /usr/src/sys/modules/ipfw
# make DEBUG_FLAGS=-DIPFIREWALL_FORWARD clean all install

-- 
WBR, Andrey V. Elsukov