From owner-freebsd-doc@FreeBSD.ORG  Thu May 19 05:00:27 2005
Return-Path: <owner-freebsd-doc@FreeBSD.ORG>
Delivered-To: freebsd-doc@hub.freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A369316A4CE
	for <freebsd-doc@hub.freebsd.org>;
	Thu, 19 May 2005 05:00:27 +0000 (GMT)
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7C31A43D77
	for <freebsd-doc@hub.freebsd.org>;
	Thu, 19 May 2005 05:00:27 +0000 (GMT)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.13.3/8.13.3) with ESMTP id j4J50Njc021738
	for <freebsd-doc@freefall.freebsd.org>; Thu, 19 May 2005 05:00:23 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.13.3/8.13.1/Submit) id j4J50NxL021737;
	Thu, 19 May 2005 05:00:23 GMT
	(envelope-from gnats)
Date: Thu, 19 May 2005 05:00:23 GMT
Message-Id: <200505190500.j4J50NxL021737@freefall.freebsd.org>
To: freebsd-doc@FreeBSD.org
From: David Adam <zanchey@ucc.gu.uwa.edu.au>
Subject: Re: docs/81199: handbook/ipfw does not mention gateway_enable in
 rc.conf 
X-BeenThere: freebsd-doc@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: David Adam <zanchey@ucc.gu.uwa.edu.au>
List-Id: Documentation project <freebsd-doc.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-doc>
List-Post: <mailto:freebsd-doc@freebsd.org>
List-Help: <mailto:freebsd-doc-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2005 05:00:27 -0000

The following reply was made to PR docs/81199; it has been noted by GNATS.

From: David Adam <zanchey@ucc.gu.uwa.edu.au>
To: Rong-En Fan <rafan@infor.org>
Cc: FreeBSD-gnats-submit@FreeBSD.org
Subject: Re: docs/81199: handbook/ipfw does not mention gateway_enable in
 rc.conf 
Date: Thu, 19 May 2005 12:53:46 +0800 (WST)

 On Wed, 18 May 2005, Rong-En Fan wrote:
 > >Description:
 > 	Handbook 24.5 and 24.6
 > 	http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipf.html
 > 	http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls-ipfw.html
 >
 > 	in 24.6, which contains ipfw/natd, and it does not explicitly mention
 > 	gateway_enable="YES" if you are going to use private ip. While 24.5.3
 > 	(section about ipf) does it.
 >
 > >Fix:
 > 	Add similar things in 24.5.3 to 24.6.3.
 
 The following patch should cover it.
 
 ----- firewalls.chapter.81199.patch begins here -----
 --- firewalls.chapter.orig	2005-05-08 22:15:43.000000000 +0800
 +++ firewalls.chapter.1	2005-05-19 12:49:45.000000000 +0800
 @@ -2265,6 +2265,11 @@
 
  	<programlisting>net.inet.ip.fw.verbose_limit=5</programlisting>
        </warning>
 +
 +      <para>If you are using NAT, enable IP forwarding:</para>
 +
 +      <programlisting>gateway_enable="YES"</programlisting>
 +
      </sect2>
 
      <sect2 id="firewalls-ipfw-cmd">
 ----- firewalls.chapter.81199.patch ends here -----
 
 Can Rong-En or someone else using IPFW to do NAT confirm that this is
 required before it gets checked in, please? (I assume there are still
 some people out there who do...)
 
 David Adam
 zanchey@ucc.gu.uwa.edu.au