about ipfilter
Tang Ho Yim
hoyimtang at yahoo.com
Thu Sep 22 01:43:38 PDT 2005
Hi,
I am having confuse with the ipfilter and the kernel setup.
I have setup a firewall on FreeBSD 5.4 with ipfilter.
The rc.conf which include:
ipfilter_enable="YES"
ipfilter_rules="/etc/ipf.rules"
ipmon_enable="YES"
ipmon_flags="-Ds"
I didn't compile the kernel with:
options IPFILTER
options IPFILTER_LOG
Then the ipfilter cannot start on boot with the error:
link_elf: symbol in6_cksum undefined
kldload: can't load ipl: No such file or directory
/etc/rc: ERROR: IP-filter module failed to load
I know this error is something about missing the /dev/ipl file or else.
If I compile the kernel with the above options then I can start it on boot.
So, I am confuse. The handbook say you don't need compile it mandatory. But why I can't start without the options compile ? Am I miss something in order to load the module without compile the options ? Or actually, it must be compile within the kernel ?
---------------------------------
Yahoo! for Good
Click here to donate to the Hurricane Katrina relief effort.
More information about the freebsd-questions
mailing list