Date: Mon, 1 Oct 2001 15:18:04 -0700 (PDT) From: "f.johan.beisser" <jan@caustic.org> To: "Oliver, Michael W." <oliver.michael@gargantuan.com> Cc: "'freebsd-questions@FreeBSD.ORG'" <freebsd-questions@FreeBSD.ORG> Subject: Re: Ipfilter 3.4.20 port with IPv6 support Message-ID: <Pine.BSF.4.21.0110011453260.4143-100000@pogo.caustic.org> In-Reply-To: <1DA741CA6767A144BAA4F10012536C27A8C6@LKLDDC01.GARGANTUAN.COM>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 30 Sep 2001, Oliver, Michael W. wrote: > Folks, > > Can anyone give me some pointers on this subject? I can't get ipfilter > working with IPv6 support to save my dang life. It is working fine for > IPv4, just not IPv6. I am using 4.4 STABLE from 9/29. I also disregarded > the port and tried building from the source on the authors web site, but > that was just as fruitless. I would like to get this working from the port > since that is what it is there for anyway... so far, in testing on OpenBSD, i've not seen IPFilter 3.4.20 handle any IPv6 packets at all. i've not had a chance to test it under FreeBSD, but i don't see a reason for the behaviour to change, and based on what you've just posted, aparently it doesn't. according to Itojun (with the KAME project), the IPFilter code is not compatable with the various KAME IPv6 stacks, and "has no chance in IPv6, due to its internal structure." now, just in case you've not checked it, inside the IPFilter Makefile, there is a single flag that needs to be uncommented before you build it. As i said before, though, i've not seen IPFilter work with v6 traffic. > Thanks in advance for all of your help, and please cc me on all replies. > Thanks! i would suggest trying ip6fw (IP6FIREWALL, iirc is the option in the kernel) before attempting any more things with IPFilter. ask on the IPfilter mailing lists, and check back in the various archives. -- jan -------/ f. johan beisser /--------------------------------------+ http://caustic.org/~jan jan@caustic.org "if my thought-dreams could be seen.. "they'd probably put my head in a gillotine" -- Bob Dylan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0110011453260.4143-100000>