ipfw2 broken in -current?
Jason Dambrosio
jason at wiz.cx
Fri May 23 22:20:32 PDT 2003
# ipfw show
65535 2875 1377389 deny ip from any to any
# ping lava.net
PING lava.net (64.65.64.17): 56 data bytes
64 bytes from 64.65.64.17: icmp_seq=0 ttl=242 time=58.529 ms
# ipfw add 100 divert natd ip from any to any via bge0
ipfw: getsockopt(IP_FW_ADD): Invalid argument
ipfw: opcode 50 size 1 wrong
# uname -a
FreeBSD test-server 5.1-BETA FreeBSD 5.1-BETA #12: Fri May 23 18:11:41 HST 2003
I have:
options IPDIVERT
options IPSTEALTH
options IPFIREWALL
options IPFIREWALL_FORWARD
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=0
options IPFIREWALL_DEFAULT_TO_ACCEPT
and
sysctl net.inet.ip.forwarding=1
sysctl net.inet.ip.fastforwarding=1
sysctl net.inet.ip.stealth=1
Jason
More information about the freebsd-ipfw
mailing list