From owner-freebsd-questions  Sat Jan 22  6:45:34 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from mx2.x-treme.gr (mx2.x-treme.gr [212.120.192.15])
	by hub.freebsd.org (Postfix) with ESMTP id AE4C915657
	for <questions@FreeBSD.ORG>; Sat, 22 Jan 2000 06:45:25 -0800 (PST)
	(envelope-from keramida@diogenis.ceid.upatras.gr)
Received: from hades.hell.gr (pat38.x-treme.gr [212.120.197.230])
	by mx2.x-treme.gr (8.9.3/8.9.3/IPNG-ADV-ANTISPAM-0.1) with ESMTP id QAA13181;
	Sat, 22 Jan 2000 16:45:18 +0200
Received: (from charon@localhost)
	by hades.hell.gr (8.9.3/8.9.3) id QAA28793;
	Sat, 22 Jan 2000 16:31:17 +0200 (EET)
	(envelope-from keramida@diogenis.ceid.upatras.gr)
Date: Sat, 22 Jan 2000 16:31:17 +0200
From: Giorgos Keramidas <charon@hades.hell.gr>
To: Klaus Brunner <k.brunner@acm.org>
Cc: questions@FreeBSD.ORG
Subject: Re: ipfilter on 3.4-STABLE: "File exists"
Message-ID: <20000122163117.D28578@hades.hell.gr>
Reply-To: keramida@ceid.upatras.gr
References: <38889CAF.FE750A38@acm.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0pre3i
In-Reply-To: <38889CAF.FE750A38@acm.org>
X-PGP-Fingerprint: 62 45 D1 C9 26 F9 95 06  D6 21 2A C8 8C 16 C0 8E
X-Phone-Number: +30-94-6203692, +30-93-2886457
X-Address: Theodorou Kirinaiou 61, 26334 Patra, Greece
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, Jan 21, 2000 at 06:51:43PM +0100, Klaus Brunner wrote:
> Hello,
> 
> I'm trying to get ipfilter (plus ipnat) to work on my 3.4-STABLE box
> (fresh cvsup today, kernel options IPFILTER and IPFILTER_LOG). The
> ipfilter comes up and gives me an "initialized, default = pass all,
> logging = enabled" message. ipnat gets initialized and works fine.
> 
> However, as soon as I try to add ANY rule using ipf, I get a "File
> exists" message. 
> 
> Example (trying to enter a simple rule from stdin):
> 
> root@winf# ipf -f -
> pass in all
> ^D
> ioctl(SIOCADDFR): File exists

This probably means that you have a rule that resembles this in your filters
already.  See below:

    # ipfstat -nio
    ...
    @2 pass in from any to any
    ^C
    # ipf -f -
    pass in all
    ioctl(SIOCADDFR): File exists
    # ipf -FA
    ipf -f -
    pass in all
    ^D

Obviously the `pass in all' and `pass in from any to any' rules are the
same thing, and that's why I get a "File exists" error message.  After
I clear the rules list with ipf, I can use this rule again because no
equivalent exists.

Look again in your rules for little mistakes like this one.

-- 
Giorgos Keramidas, < keramida @ ceid . upatras . gr >
"Don't let your schooling interfere with your education." [Mark Twain]


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message