Date: Sat, 30 Jul 2005 10:01:30 -0300 From: "Giovanni P. Tirloni" <gpt@tirloni.org> To: pf@freebsd.org Subject: Re: rdr not working for transparent http - 5.4-stable Message-ID: <42EB7A2A.3080701@tirloni.org> In-Reply-To: <42E8DBC6.6060907@tirloni.org> References: <42E8D3D5.4030300@tirloni.org> <200507281458.56534.max@love2party.net> <42E8DBC6.6060907@tirloni.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Giovanni P. Tirloni wrote: > Max Laier wrote: > >> One thing comes to my mind: What does >> $sysctl net.inet.ip.forwarding >> say? > > > # sysctl net.inet.ip.forwarding > net.inet.ip.forwarding: 1 > > I had some tweaks in /etc/sysctl but disabling them didn't help either. > > #net.inet.ip.check_interface=1 > #net.inet.tcp.blackhole=2 > #net.inet.udp.blackhole=1 > I forgot to mention this box had ipfw+dummnyet (with two queues) activated. I disabled ipfw in the kernel and pf rdr worked again! Just removing the ipfw rules didn't work. Weird enough, I don't have dummynet on the other 2 machines that have the same problem. But ipfw is compiled in but disabled. I'll try to disable ipfw on the other boxes and see what happens there to confirm this. -- Giovanni P. Tirloni / gpt@tirloni.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42EB7A2A.3080701>