I believe it is the "external_arp" option (of npm-tcpip.so) you might want to try. You also need to enable "forward" (or "fastforward" on npm-tcpip.so)
-Xiaodan Tang > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Francois Joubert > Sent: Tuesday, March 22, 2005 1:09 AM > To: [email protected] > Subject: Re: ipfilter on QNX6.3 > > On Tue, 22 Mar 2005 03:26:57 +1100 (EST) Darren Reed > <[EMAIL PROTECTED]> wrote: > > [ Charset ISO-8859-1 unsupported, converting... ] > > > I have installed ipfilter on QNX 6.3. I would like to implement a > > > firewall, with the first attempt to block everthing. > > > > > > I have no success, it is as if the firewall to totally bypassed. > > > Repeated ipfstat indicates no activity whatsoever. > > > > > > have you tried mount'ing tcpip with the noarp setting (I > > think that's > > the one that's important in 6.2) ? > > > > Darren > > I have tried it but it made no difference. > In QNX Help there is no "noarp" setting for tcpip. > > The options for tcpip are: > The tcpip_options are one or more of the following, > separated by commas > without whitespace: > > external_arp > Enable use of external ip_en converter module (default is > builtin). > fastforward > Enable fastforwarding path. This is useful for gateways. > forward > Enable forwarding between interfaces. > ipsec > Enable IPSec support (default is off). > prefix=/path > Path to prepend to traditional /dev/socket. This option is > useful when > running multiple stacks. > ngif=num > Number of GIF interfaces to create (default is 0). > nipip=num > Number of IPIP (IP tunneling protocol) interfaces to > create (default is > 0). > ngre=num > Number of GRE (Generic Routing Encapsulation) interfaces > to create > (default is 0). > nvlan=num > Number of VLAN interfaces to create (default is 0). > random > Use /dev/random as source of random data. The default is > to use the > builtin pseudo-random generator. > recv_ctxt=num > Size of the receive context buffer, in bytes (default is > 2048). > reuseport_unicast > If using SO_REUSEPORT socket option, unicast packets are > received on all > sockets bound to the same port. > somaxconn=num > Maximum queue length. The default length is specified by > SOMAXCONN, > which is defined in <sys/socket.h>. > stacksize=num > Size of each thread's stack, in bytes (default is 2912). > threads=num > Number of threads (default is 48, minimum is 4). > > Francois > ______________________________________________________________ > http://www.webmail.co.za the South African FREE email service >
