Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 17 Aug 2002 10:03:27 +0700
From:      Hendry <havoc2k@zeus.havoc2k.or.id>
To:        freebsd-net@FreeBSD.ORG
Subject:   IPFW2 strange results
Message-ID:  <20020817030327.GA1311@zeus.havoc2k.or.id>
next in thread | raw e-mail | index | archive | help 
dear all;

i just finished build a new ipfw2  regarding to luigi post at
2002-07-23.  run cvsup ; doing install da world + build da kernel 
; mergemaster works like a charm.  follow up the instruction from luigi.
by adding     options   IPFW2  on kernel config ( finished build )
compile  install /usr/src/sbin/ipfw and /usr/src/lib/libalias with  
FLAGS IPFW2. 
running make -DIPFW2 both on sbin/ipfw , lib/libalias works great.
after doing restarting all the rules loading well and more fast of course
due to completely patern which ipfw2 offered.
But i found the strange when ipfw doing forwarding stuff
for the reference i run transparent proxy and put ipfw show result below 

00351  1163   155021 fwd 202.143.98.142,3128 tcp from 192.168.12.0/28 to
any 80 

it seems that the rules hit the target. but nothing progress transparent
mode didnt work ; event from the proxy logs. probably i already run
this transparent mode for long time and i quit sure that is nothing
wrong  with the proxy aplication its  just uknown where the forward result fly ..
or maybe from kernel config ? 

options         IPDIVERT                
options         IPFILTER                
options         IPFILTER_LOG            
options         IPFW2
options         IPFIREWALL_VERBOSE      
options         IPFIREWALL_VERBOSE_LIMIT=100
options         IPFIREWALL_FORWARD      

or maybe i need to change IPFIREWALL_FORWARD to IPFW2_FORWARD ? =P
but i think its moron since luigi didnt recomended that and also when
i add the ipfw rule which related with fwd stuff it didnt  encountered any
error message or else. My best Solution for now is back to use 
the old ipfw.
any clue or suggestion ? or did i miss something heh ?
any comments  will be apreciated


cheers
Hendry S.


 



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020817030327.GA1311>