From owner-freebsd-current Sun Oct 22 13:14:56 2000 Delivered-To: freebsd-current@freebsd.org Received: from ns.internet.dk (ns.internet.dk [194.19.140.1]) by hub.freebsd.org (Postfix) with ESMTP id 0955C37B4C5 for ; Sun, 22 Oct 2000 13:14:52 -0700 (PDT) Received: (from uucp@localhost) by ns.internet.dk (8.11.1/8.11.1) with UUCP id e9MKEoC30666 for freebsd-current@FreeBSD.ORG; Sun, 22 Oct 2000 22:14:50 +0200 (CEST) (envelope-from leifn@neland.dk) Received: from gina (gina.neland.dk [192.168.0.14]) by arnold.neland.dk (8.11.0/8.11.0) with SMTP id e9MJr2Z02073 for ; Sun, 22 Oct 2000 21:53:03 +0200 (CEST) (envelope-from leifn@neland.dk) Message-ID: <009701c03c61$c305b7c0$0e00a8c0@neland.dk> Reply-To: "Leif Neland" From: "Leif Neland" To: Subject: divert as module? Date: Sun, 22 Oct 2000 21:52:03 +0200 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I want to install ipfw and natd to a machine working as isdn-router, which I lost the kernel config for I connect to the world via userland-ppp and isdnd. I don't have any ipfw or divert compiled in the kernel, but I can load ipfw.ko, so the firewall rules can work (I now see my isp sends IGMP's to me...) I can also start /sbin/natd -n ed0 But the command "ipfw add divert natd all from any to any via tun0 " fails: 00000 divert 8668 ip from any to any via tun0 ipfw: setsockopt(IP_FW_ADD): Invalid argument And I can't get from any hosts inside the router to the world. Can I enable divert via a module, or do I have to reconstruct the kernel config and recompile? Or can I use ppp's nat together with ipfw? I have used the http://www.freebsd.org/tutorials/dialup-firewall/index.html by Marc Silver as the basis for my setup. # kldstat Id Refs Address Size Name 1 5 0xc0100000 250bf8 kernel 2 1 0xc0a88000 6000 ipfw.ko 3 1 0xc0ad6000 3000 daemon_saver.ko 4 1 0xc0adb000 11000 linux.ko Leif To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message