You are wrong, you do not have to compile ipfirewall kernel options into the kernel. IPFW is delivered as an bootable module. You need this in rc.conf to enable ipfw, it will auto load the bootable module.
# Required For IPFW kernel firewall support firewall_enable="YES" # Start daemon firewall_script="/etc/ipfw.rules" # run my custom rules firewall_logging="YES" # Enable events logging natd_enable="YES" # Enable IPFW nat function natd_interface="rl0" natd_flags="-dynamic -m -u -f /etc/natd.conf" -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Christian Hiris Sent: Saturday, May 15, 2004 3:06 AM To: [EMAIL PROTECTED] Cc: Anthony Philipp Subject: Re: natd -redirect_port On Saturday 15 May 2004 07:49, Anthony Philipp wrote: > hello, > im am trying to redirect various ports through my gateway, a freebsd > machine, to other machines. when i type: natd -interface rl0 -redirect_port > tcp 10.10.10.4:25 25 > to redirect port 25 to 10.10.10.4 on port 25 it tells me > natd: Unable to create divert socket.: Protocol not supported > rl0 is the external ethernet card. if i dont use -interface, it says that > the aliasing address is not given. any help is appreciated. am i running > freebsd 5.2-release anthony > > _______________________________________________ > [EMAIL PROTECTED] mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "[EMAIL PROTECTED]" Natd requires 'options IPFIREWALL' and 'options IPDIVERT' in your kernel config. Refer to section "RUNNING NATD" in the natd(8) manual for some more info. regards ch -- Christian Hiris <[EMAIL PROTECTED]> | OpenPGP KeyID 0x941B6B0B OpenPGP-Key at hkp://wwwkeys.eu.pgp.net and http://pgp.mit.edu _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
