From owner-freebsd-questions Tue Feb 27 15: 6:55 2001 Delivered-To: freebsd-questions@freebsd.org Received: from home.offwhite.net (home.offwhite.net [156.46.35.30]) by hub.freebsd.org (Postfix) with ESMTP id 2AD3B37B719 for ; Tue, 27 Feb 2001 15:06:51 -0800 (PST) (envelope-from brennan@offwhite.net) Received: from localhost (brennan@localhost) by home.offwhite.net (8.11.1/8.11.1) with ESMTP id f1RN6cC75521; Tue, 27 Feb 2001 17:06:38 -0600 (CST) (envelope-from brennan@offwhite.net) Date: Tue, 27 Feb 2001 17:06:38 -0600 (CST) From: Brennan Stehling To: Jonathan Chen Cc: "G. Jason Middleton" , freebsd-questions@FreeBSD.ORG Subject: Re: ipfw: getsockopt(IP_FW_ADD): Invalid argument In-Reply-To: <20010228110607.C45483@itouchnz.itouch> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG I tried loadin the ipfw.ko kernel module with kldload and it did not seem to have the IPDIVERT ability. I even went to /dev and ran... sh MAKDEV ipl It did not allow me to do that divert rule. I may be mistaken. I will have to reboot my PC into FreeBSD and boot up with the default kernel to find out. I will post what I find to the list. Brennan Stehling - software developer and system administrator my projects: home.offwhite.net (free personal hosting) www.greasydaemon.com (bsd search) On Wed, 28 Feb 2001, Jonathan Chen wrote: > [Please do *NOT* remove the Cc: freebsd-questions] > > On Tue, Feb 27, 2001 at 04:49:04PM -0500, G. Jason Middleton wrote: > > my dmesg has > > > > IP packet filtering initialized, divert enabled, rule-based forwarding > > enabled, default to accept, logging limited to 100 packets/entry by > > default > > Hmm. In that case I can't see why it shouldn't be working. > > 1. Is "de0" there? > 2. No _load lines in /boot/loader.conf? kldstat should *NOT* show > ipfw.ko. > > Maybe someone else on the list can help. > -- > Jonathan Chen > ---------------------------------------------------------------------- > Computers are like air conditioners. > They stop working when you open Windows. > > > > On Wed, 28 Feb 2001, Jonathan Chen wrote: > > > > > On Tue, Feb 27, 2001 at 04:01:22PM -0500, G. Jason Middleton wrote: > > > > i did! compiled with both! > > > > > > > > Jason > > > > > > Check the output of dmesg(1), it should have the line: > > > > > > IP packet filtering initialized, divert enabled, rule-based forwarding disabled, default to deny, logging disabled > > > > > > Make sure you aren't loading ipfw.ko instead. > > > -- > > > Jonathan Chen > > > ---------------------------------------------------------------------- > > > The Internet: an empirical test of the idea that a million monkeys > > > banging on a million keyboards can produce Shakespeare > > > > > > > > > > > On Wed, 28 Feb 2001, Jonathan Chen wrote: > > > > > > > > > On Tue, Feb 27, 2001 at 03:12:15PM -0500, G. Jason Middleton wrote: > > > > > > I get this error when i am tryign tio set up my firewall....i have it set > > > > > > to open...even when i try to use ipfw : > > > > > > /sbin/ipfw add 500 divert 8668 all from any to any via de0 > > > > > > > > > > > > i get > > > > > > > > > > > > ipfw: getsockopt(IP_FW_ADD): Invalid argument > > > > > > > > > > Did you compile your kernel with: > > > > > > > > > > options IPFIREWALL > > > > > options IPDIVERT > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message