ipfw fwd to localhost

From: Karim Fodil-Lemelin (kfl_at_xiphos.ca)
Date: 04/21/05

  • Next message: Andre Oppermann: "Re: ipfw fwd to localhost" 
    Date: Thu, 21 Apr 2005 13:20:58 -0400
To: freebsd-net@freebsd.org

    Hi,

        I just did a cvsup of RELENG_5 and got some problem doing forwarding
    to localhost using a rule like this:

    ipfw add fwd 127.0.0.1,1234 tcp from any to any in via re1

        I have those options in my kernel config:

    options IPFIREWALL
    options IPFIREWALL_FORWARD_EXTENDED
    options IPFIREWALL_DEFAULT_TO_ACCEPT

        I understand that 5.4 is using ipfw2 by default so I did not add
    IPFW2="YES" in /etc/make.conf and used the ipfw that I had installed
    with 5.3.

    The error I get is somehting like setsockopt (IP_FW_ADD) invalid
    argument when issuing the ipfw call.

    Anybody has encountered this problem?

    Karim.
    _______________________________________________
    freebsd-net@freebsd.org mailing list
    http://lists.freebsd.org/mailman/listinfo/freebsd-net
    To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"

  • Next message: Andre Oppermann: "Re: ipfw fwd to localhost"

    Relevant Pages

    • Re: forwarding as a gateway, logging certain traffic
      ... ipfw add 1 log tcp from any to me 25 setup ... why not set up ipfw on the FreeBSD ... ipfw add 5 allow tcp from any to me 25 setup ...
      (freebsd-questions)
    • Re: ipfw question
      ... # Pass and log all incoming ftp-data connections. ... ipfw add allow log tcp from any 20 to any in setup keep-state ... This way only the packets related to one of the states will pass ...
      (freebsd-questions)
    • FreeBSD Security Advisory: FreeBSD-SA-01:08.ipfw
      ... based on an old version of ipfw and does not contain as many features. ... Due to overloading of the TCP reserved flags field, ipfw and ip6fw ... incorrectly treat all TCP packets with the ECE flag set as being part ...
      (FreeBSD-Security)
    • FreeBSD Security Advisory: FreeBSD-SA-01:08.ipfw [REVISED]
      ... included in FreeBSD 4.0 and above. ... based on an old version of ipfw and does not contain as many features. ... Due to overloading of the TCP reserved flags field, ... incorrectly treat all TCP packets with the ECE flag set as being part ...
      (FreeBSD-Security)
    • Re: Newbie Firewall Question
      ... why is there natd rules? ... ipfw add divert natd all from any to any via ep0 ... ipfw add allow tcp from any to any established ... ipfw add allow udp from any 53 to any ...
      (freebsd-questions)