From owner-freebsd-questions@FreeBSD.ORG Mon Nov 8 17:21:57 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E5ACC16A4CE for ; Mon, 8 Nov 2004 17:21:57 +0000 (GMT) Received: from kheops.speedy.net.pe (kheops.speedy.net.pe [200.48.172.40]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1A57143D1D for ; Mon, 8 Nov 2004 17:21:57 +0000 (GMT) (envelope-from rcc@speedy.net.pe) Received: from localhost (unknown [127.0.0.1]) by kheops.speedy.net.pe (Postfix) with ESMTP id 25FCB26355; Mon, 8 Nov 2004 12:22:24 -0500 (PET) Received: from kheops.speedy.net.pe ([127.0.0.1]) by localhost (kheops.speedy.net.pe [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 86456-48; Mon, 8 Nov 2004 12:22:21 -0500 (PET) Received: from kheops.speedy.net.pe (kheops.speedy.net.pe [200.48.172.40]) by kheops.speedy.net.pe (Postfix) with ESMTP id 5F86426354; Mon, 8 Nov 2004 12:22:21 -0500 (PET) Date: Mon, 8 Nov 2004 12:22:21 -0500 (PET) From: Richard Cotrina To: dave In-Reply-To: <000b01c4c5b4$a22ab6f0$0200a8c0@satellite> Message-ID: <20041108121921.E92000@kheops.speedy.net.pe> References: <000b01c4c5b4$a22ab6f0$0200a8c0@satellite> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by amavisd-new at speedy.net.pe cc: freebsd-questions@freebsd.org Subject: Re: ipfilter loading on 5.3 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Nov 2004 17:21:58 -0000 Firs of all, check if the module has been loaded : # kldstat You should see the module ipl loaded : Id Refs Address Size Name 2 1 0xc36df000 18000 ipl.ko If not, load it manually : # kldload ipl On Mon, 8 Nov 2004, dave wrote: > Hello, > I believe i am having a configuration error. I've got a new 5.3 box to > which i'm atempting to get ipfilter going. I read the updated handbook and > have added: > > ipfilter_enable="YES" > ipfilter_rules="/etc/ipf.rules" > ipmon_enable="YES" > ipmon_flags="-Dsvn" > > to my rc.conf file. When i try to manually load up my rules file with: > ipf -FA -f /etc/ipf.rules > i am getting an error "can not open no such device" > I have not compiled anything for ipfilter in to the kernel as i had done > previously i understood from the handbook that ipf was capable of being > dynamically loaded and the rc.conf line would suffice. I've also added: > Local0.* /var/log/ipfilter.log > to my syslog.conf file getting ipf traffic in a separate logfile. When i go > to rotate this file with newsyslog is there any special flags i should pass? > Thanks. > Dave. > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >