On Tue, 19 May 1998, Heiko W.Rupp wrote:
> I have a (1.3.1/i386) kernel with
> 
> pseudo-device     ipfilter
> pseudo-device   bpfilter        8  
> options         PPP_FILTER      # Active filter support for PPP (requires bpf)
> options         PFIL_HOOKS      # pfil(9) packet filter hooks
> 
> I can run ipf (which I verify with ipfstat -h), but
> when I call (it does not depend on ipf enabled or not) I get:
> 
> snert# ipmon
> read: Device not configured

This happened to me... What I had to do was add 'options IPFILTER_LOG'
to my config file. This option doesn't seem top be present at all (not
even commented out) in the arm32 config file. ipmon seems to work, though.

One thing I did notice once I had set it up was that I was getting packets
being logged as blocked which were from my own IP address and were coming
in through my 'net card. I have a rule set up to block such packets. I'm
pretty sure that no-one is surrupticiously using my address and it only
happens when I'm actively using the network.  The packets are listed as
going from my machine to whichever machine I'm using. I only get a few,
certainly far fewer than the number of packets being sent. The packets
have the ACK flag set. I'm inclied towards blaming on the driver (which
seems to lock up from time to time---or after a very short time if the
card is put in promiscuous mode).

-- 
alex@hayward.u-net.com; xelah@ferret.lmh.ox.ac.uk