Hi Darren,
the problems with loadable module were:
1) the missing 'make ip_rules.c'
2) the 'modload' command stated in INSTALL.FreeBSD - i think this
should be 'kldload'
Now it also works as loadable module.
About the NAT problem:
This was my mistake, i've added a false default route ;-)
First i thougt it was NAT because i could access everything in my 2
subnets, but nothing outside...
Everything works now...
Thanks
Andy
Am 21.07.2005 um 19:06 schrieb Darren Reed:
Hi,
i i've compiled IPFilter into the kernel - loadable module didn't
work.
What happened when you tried ?
It should work.
Try the following:
1) make freebsd5
2) make ip_rules.c
3) make install-bsd
4) BSD/kupgrade
5) add 'options IPFILTER', 'options IPFILTER_LOG' and 'options
IPFILTER_DEFAULT_BLOCK' to your kernel configuration
6) build and install the new kernel
this worked for me, but i have trouble getting NAT to work - i use
the same rules like on my (working) Solaris 9 box, but it doesn't
work on FreeBSD...
Can you explain this problem in more detail ?
Darren
