Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 15 May 2004 10:37:37 -0500
From:      "Micheal Patterson" <micheal@tsgincorporated.com>
To:        <Barbish3@adelphia.net>, "Christian Hiris" <4711@chello.at>, <freebsd-questions@freebsd.org>
Cc:        Anthony Philipp <philipp1@itg.uiuc.edu>
Subject:   Re: natd -redirect_port
Message-ID:  <004801c43a92$91200ed0$0201a8c0@dredster>
References:  <MIEPLLIBMLEEABPDBIEGIEDFFOAA.Barbish3@adelphia.net>
next in thread | previous in thread | raw e-mail | index | archive | help 


----- Original Message ----- 
From: "JJB" <Barbish3@adelphia.net>
To: "Christian Hiris" <4711@chello.at>; <freebsd-questions@freebsd.org>
Cc: "Anthony Philipp" <philipp1@itg.uiuc.edu>
Sent: Saturday, May 15, 2004 8:05 AM
Subject: RE: natd -redirect_port


> You are wrong, you do not have to compile ipfirewall kernel options
> into the kernel.
> IPFW is delivered as an bootable module.
> You need this in rc.conf to enable ipfw, it will auto load the
> bootable module.
>
> # Required For IPFW  kernel firewall support
> firewall_enable="YES"              # Start daemon
> firewall_script="/etc/ipfw.rules"  # run my custom rules
> firewall_logging="YES"            # Enable events logging
>
> natd_enable="YES"                 # Enable IPFW nat function
> natd_interface="rl0"
> natd_flags="-dynamic -m -u -f /etc/natd.conf"
>

You're right, you don't have to recompile to use ipfw, however, since there
is no divert module, the kernel will still need to be recompiled to enable
divert. In order for the OP to do what they're wanting to do they will still
need to recompile kernel and restart the system.

--

Micheal Patterson
TSG Network Administration
405-917-0600

Confidentiality Notice:  This e-mail message, including any attachments, is
for the sole use of the intended recipient(s) and may contain confidential
and privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply e-mail and destroy all copies of the original
message.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?004801c43a92$91200ed0$0201a8c0>