current-users: Re: ipfilter and ipnat broken

Subject: Re: ipfilter and ipnat broken
To: None <current-users@NetBSD.org>
From: Matthias Scheler <tron@zhadum.de>
List: current-users
Date: 04/19/2004 18:49:31

In article <BAY12-F45aNgEpTX5V3000481aa@hotmail.com>,
	"Paul Higgins" <phiggssx@hotmail.com> writes:
> On netbsd -current 2.0C sparc64 built a few hours ago, ...

Did you rebuild kernel and userland or just the kernel? The later might
not work.

> ... ipnat and ipfilter are completely broken.
> 
> # /etc/rc.d/ipnat reload
> 0 entries flushed from NAT list
> 2:ioctl(add/insert nat rule): Invalid argument
> 2:ioctl(add/insert nat rule): Invalid argument
> 2:ioctl(add/insert nat rule): Invalid argument
> 3:ioctl(add/insert nat rule): Invalid argument
> 
> ipfilter can't parse it's config file due to syntax errors.
> 
> Any help would be greatly appreciated.

Posting the rules would be a good start. IP Filter 4.x is checking the
configuration file syntax more strictly.

	Kind regards

-- 
Matthias Scheler                                  http://scheler.de/~matthias/