kern/107305: ipfw fwd doesn't seem to work
Remko Lodder
remko at elvandar.org
Fri Dec 29 08:00:59 PST 2006
The following reply was made to PR kern/107305; it has been noted by GNATS.
From: Remko Lodder <remko at elvandar.org>
To: Timofej Dod <hidden at 4you.lt>
Cc: freebsd-gnats-submit at FreeBSD.org
Subject: Re: kern/107305: ipfw fwd doesn't seem to work
Date: Fri, 29 Dec 2006 16:32:42 +0100
On Fri, Dec 29, 2006 at 03:00:27AM +0000, Timofej Dod wrote:
>
> Trying to set up transparent proxy, have a rule:
>
> fwd 212.59.27.254,1031 log logamount 100 tcp from any to any dst-port 80
>
> # ifconfig
> em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
> options=b<RXCSUM,TXCSUM,VLAN_MTU>
> inet 212.59.27.254 netmask 0xffffff00 broadcast 212.59.27.255
> inet 212.59.27.252 netmask 0xffffff00 broadcast 212.59.27.255
> ether 00:30:48:70:bd:d2
> media: Ethernet autoselect (100baseTX <full-duplex>)
> status: active
>
> netcat not showing anything but there are lines in /var/log/security:
>
> # nc -l 212.59.27.254 1031
>
> kernel: ipfw: 999 Forward to 212.59.27.254:1031 TCP 212.59.27.249:60399 64.233.183.147:80 in via em0
>
So is your machine actually configured to forward packets at all?
use ``sysctl net.inet.ip.forwarding'', if that is 0 please change it to
1 by doing the following: ``sysctl net.inet.ip.forwarding=1''. If this
works please dont forget to configure the option in /etc/sysctl.conf
Let me know what this does please.
--
Kind regards,
Remko Lodder ** remko at elvandar.org
FreeBSD ** remko at FreeBSD.org
/* Quis custodiet ipsos custodes */
More information about the freebsd-bugs
mailing list