From owner-freebsd-questions@FreeBSD.ORG  Tue Aug 10 20:23:50 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 6751316A4CF
	for <freebsd-questions@freebsd.org>;
	Tue, 10 Aug 2004 20:23:50 +0000 (GMT)
Received: from pixenter.com (pixenter.com [207.55.105.100])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 517A643D4C
	for <freebsd-questions@freebsd.org>;
	Tue, 10 Aug 2004 20:23:50 +0000 (GMT)
	(envelope-from dave@rocsculptr.net)
Received: from www.rocsculptr.net (localhost [127.0.0.1])
	by pixenter.com (Postfix) with SMTP id B94E91D9E5D
	for <freebsd-questions@freebsd.org>;
	Tue, 10 Aug 2004 13:23:41 -0700 (PDT)
Received: from 128.115.254.31
        (SquirrelMail authenticated user dave_m)
        by www.rocsculptr.net with HTTP;
        Tue, 10 Aug 2004 13:23:41 -0700 (PDT)
Message-ID: <1510.128.115.254.31.1092169421.squirrel@www.rocsculptr.net>
Date: Tue, 10 Aug 2004 13:23:41 -0700 (PDT)
From: "Dave Patterson" <dave@rocsculptr.net>
To: freebsd-questions@freebsd.org
User-Agent: SquirrelMail/1.4.1
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3
Importance: Normal
Subject: Problem: ipf - /dev/kmem errors 
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: dave@rocsculptr.net
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Aug 2004 20:23:50 -0000

Hello everyone,

I'm currently using a generic pc running, that is acting as a router. The
routing works fine, but ipfilter does not.
Pentium III (801.82-MHz 686-class CPU)
memory  = (128 MB)

5.2-CURRENT #1

here is part of my kernel config file :
>--snip--<
# IPF stuff
options         PFIL_HOOKS              # pfil(9) framework
options         IPFILTER
options         IPFILTER_LOG
options         INVARIANTS              #Enable calls of extra sanity
checking
>--snip--<

the kernel seems to load the module {from dmesg}
IP Filter: v3.4.35 initialized.  Default = pass all, Logging = enabled

yet when I try and verify which rulesets are loaded, I get kmem errors.

# ipfstat
ioctl(SIOCGETFS): Invalid argument
openkmem:open: No such file or directory



I did read that in 5.x /dev/kmem was changed/removed for security, if
thats the case what is the facility that ipfilter uses ?

thanks for any help,
D