Re: Recompile kernel or module for ipfw+nat?
however, there is a kernel module called ipdivert.ko Is it still necessary to recompile the kernel in order to use nat with ipfw? Or, to put it another way, is there a possibility to use nat and keep the generic kernel? You can choose to use the modules or make it static by recompile the kernel. IMHO the ipnat(8) is a more simple way to get nat. Thank you for your input. I'd prefer to use the module, however it doesn't seem to work: # ipfw add nat 123 all from any to any -- example from the man page gives: ipfw: getsockopt(IP_FW_ADD): Invalid argument even though: # kldstat Id Refs AddressSize Name ... 62 0xc440 d000 ipfw.ko 71 0xc9b33000 4000 ipdivert.ko So, the original question remains - do I really need to recompile the kernel in order to use NAT with IPFW? As far as ipnat(8) goes, switching to ipfilter (which is mandatory if I intend to use ipnat?) is not really an option. Thanks, -- Nino ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Recompile kernel or module for ipfw+nat?
n j wrote: Hello everyone, I have a quick question regarding the setup of nat with ipfw. According to the handbook: The following options must be in the kernel configuration file: options IPFIREWALL options IPDIVERT however, there is a kernel module called ipdivert.ko similar to ipfw.ko for the firewall. Is it still necessary to recompile the kernel in order to use nat with ipfw? Or, to put it another way, is there a possibility to use nat and keep the generic kernel? Thanks for any input, You can choose to use the modules or make it static by recompile the kernel. IMHO the ipnat(8) is a more simple way to get nat. -- Christer Hermansson http://www.chdevelopment.se ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Recompile kernel or module for ipfw+nat?
Hello everyone, I have a quick question regarding the setup of nat with ipfw. According to the handbook: The following options must be in the kernel configuration file: options IPFIREWALL options IPDIVERT however, there is a kernel module called ipdivert.ko similar to ipfw.ko for the firewall. Is it still necessary to recompile the kernel in order to use nat with ipfw? Or, to put it another way, is there a possibility to use nat and keep the generic kernel? Thanks for any input, -- Nino ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
