From owner-freebsd-stable  Mon Oct 23  1:49:14 2000
Delivered-To: freebsd-stable@freebsd.org
Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65])
	by hub.freebsd.org (Postfix) with ESMTP id 0114F37B479
	for <stable@FreeBSD.org>; Mon, 23 Oct 2000 01:49:09 -0700 (PDT)
Received: (from ru@localhost)
	by whale.sunbay.crimea.ua (8.11.0/8.11.0) id e9N8mcm23531;
	Mon, 23 Oct 2000 11:48:38 +0300 (EEST)
	(envelope-from ru)
Date: Mon, 23 Oct 2000 11:48:38 +0300
From: Ruslan Ermilov <ru@FreeBSD.org>
To: Sean Lutner <sean@rentul.net>
Cc: stable@FreeBSD.org
Subject: Re: ipfw breakage?
Message-ID: <20001023114838.E20237@sunbay.com>
Mail-Followup-To: Sean Lutner <sean@rentul.net>, stable@FreeBSD.org
References: <Pine.BSF.4.21.0010222324020.9132-100000@lowrider.lewman.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <Pine.BSF.4.21.0010222324020.9132-100000@lowrider.lewman.org>; from sean@rentul.net on Sun, Oct 22, 2000 at 11:28:24PM -0400
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Sun, Oct 22, 2000 at 11:28:24PM -0400, Sean Lutner wrote:
> Forgive me if this has been attended to, but it seems that there is some
> problem with ipfw. I cvsup'd as of yesterday morning
> (10/21/00) 4.1.1-STABLE. I did not make any changes at all to my
> rc.firewall, but I get the following message when the rc.firewall script
> is run. Has there been some breakage in the code?
> 
> Flushed all rules.
> ipfw: getsockopt(IP_FW_ADD): Protocol not available
> 
> The above line starting with ipfw: is repeated for each rule I have. I
> even tried going to just a default allow pass all from any to any.
> 
> Any help is appreciated.
> 
I have recently changed the ipfw code to allow the IP_FW_ADD to be used
with getsockopt(2) (previously it was only allowed with setsockopt(2)).
Quite probably, you have just forgotten to recompile your kernel.  Also
make sure you have the consistent sources:

} ru          2000/10/17 06:44:58 PDT
} 
}   Modified files:        (Branch: RELENG_4)
}     sbin/ipfw            ipfw.c
}     sys/netinet          ip_fw.c raw_ip.c
}   Log:
}   MFC: make rule number available from getsockopt(IP_FW_ADD).
} 
}   Revision   Changes    Path
}   1.80.2.7   +4 -4      src/sbin/ipfw/ipfw.c
}   1.131.2.7  +4 -2      src/sys/netinet/ip_fw.c
}   1.64.2.3   +2 -1      src/sys/netinet/raw_ip.c

-- 
Ruslan Ermilov		Oracle Developer/DBA,
ru@sunbay.com		Sunbay Software AG,
ru@FreeBSD.org		FreeBSD committer,
+380.652.512.251	Simferopol, Ukraine

http://www.FreeBSD.org	The Power To Serve
http://www.oracle.com	Enabling The Information Age


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message