I have been back at work and have finally managed to get everything to work, but only as a loadable module (following my howto and removing options IPFILTER from the kernel).
The howto in INSTALL.FreeBSD for compiling ipfilter in the kernel don't seem to work for me, as I get compile errors when compiling the kernel unless I run ./BSD/kupgrade as well as kinstall, and then I always end up with interface ipfilter.1 already present in the KLD 'kernel'! kldload can't load ipl: File exists /etc/rc:ERROR: IP-filter module failed to load is there anyway of compiling ipfilter in the kernel and not as loadable modules? ANyone able to tell me where I can set this? Regards Rekkie If Darren or anyone else can give me some input on the following I'd much appreciate it. This weekend I have spent a bit of time at the computer and have managed to sortof install IPFilter4.1.7 on FreeBSD5.3, however there is still an unresolved problem. Darren your previous patch(Inlining) seems to work fine, thanks, I guess it must have been my last install of FreeBSD5.3 that had some problems. The problem that is still unresolved is the foillowing: on booting I get the following error and ipfilter doesn't load: interface ipfilter.1 already present in the KLD 'kernel'! kldload can't load ipl: File exists /etc/rc:ERROR: IP-filter module failed to load Is this due to the name of ipl.ko having been changed to ipf.ko? and how can I go about sorting this out? I have attached my howto for installing IPFilter4.1.7 on FreeBSD, which contains a few problems that will be needed to be sorted out in code. For now I have hacked it to work for me. Thanks Rekkie IPFilter4.1.7 and FReeBSD5.3-RELEASE Howto >untar ip_fil4.1.7.tar.gz tar zxvf ip_fil4.1.7.tar.gz >enter the ip_fil4.1.7 directory and patch ip_compat.h >(with patch supplied by Darren) patch ip_compat.h <PatchDarren.diff >then make IPFILTER make freebsd5 >Unless you change the schg flag on /boot/kernel/ at this time the install will >not work chflags noschg /boot/kernel >Install IPFIlter make install-bsd >Remember to return original state to /boot/kernel/ chflags schg /boot/kernel >If sources are used as is, during compilation of the kernel you will receive >an error >to avoid this modify line #275 of ip_pptp_pxy.c (the one in the untared >directory) to read: msg = (char *)fin->fin_dp + (TCP_OFF(tcp) <<2); >next run kupgrade ./BSD/kupgrade >Continue to compile your kernel cd /sys/i386/compile/KernelName make clean cd /sys/i386/conf /usr/sbin/config KernelName cd ../compile/KernelName make depend make make install >There still remains one problem though, on booting I get the following error: interface ipfilter.1 already present in the KLD 'kernel'! kldload can't load ipl: File exists /etc/rc:ERROR: IP-filter module failed to load >Is this due to the name of ipl.ko having been changed to ipf.ko? and how can I >go about sorting this out? _______________________________________________ Join Excite! - http://www.excite.com The most personalized portal on the Web!
