ppp filters don't work
alexovch at ic.kharkov.ua
Sun Dec 14 23:27:57 PST 2003
I have a troubles trying to setup ppp fitlers.
I compiled kernel include following lines:
pseudo-device ppp 10 #Point-to-point protocol
options PPP_BSDCOMP #PPP BSD-compress support
options PPP_DEFLATE #PPP zlib/deflate/gzip support
options PPP_FILTER #enable bpf filtering (needs bpf)
options IPFIREWALL #firewall
options IPFIREWALL_VERBOSE #enable logging to syslogd(8)
options IPFIREWALL_VERBOSE_LIMIT=100 #limit verbosity
options IPFIREWALL_FORWARD #enable transparent proxy support
options IPFW2 # enable ipfw2
Create section like
set filter out 0 permit 0 0
set filter in 0 permit 0 0
After connection established I can see message set filter in ppp.log and using
pppctl show me same rules active.
But they don't work. The only ipfw rules.
I setup nat via ipfw add divert natd ...
If I enable connection by ipfw it works fine, ppp filter seems to be ignored.
I'll glad to see any suggestion, please.
Sincerely Yours, Aleksey Ovcharenko
More information about the freebsd-questions