Hi. Ive now gone back and ive tried 3 different versions. 4.1.11 gets the furthest of them all. But Ive included all the errors ive had from 4.1.11, 4.1.12, and 4.1.13.
Heres my setup, and what I did to patch/change the src as needed. FreeBSD server.myserver.net 4.11-RELEASE-p16 FreeBSD 4.11-RELEASE-p16 #1: Mon Apr 3 15:15:37 GMT 2006 [EMAIL PROTECTED]:/usr/obj/usr/src/sys/MYCONF i386 I then went and patched them all with the diffs from this email from the list. http://permalink.gmane.org/gmane.comp.security.firewalls.ipfilter/6388 I also run "make freebsd4" for all the builds below. Then, 4.1.11 builds fine after that. And I ran FreeBSD-4.0/kinstall. That complains about the ipv6 patch, but since im not using ipv6, I saw no harm in that. I then cd to /usr/src and try to make kernel, with "make buildkernel KERNCONF=MYCONF" and I get the following errors: /usr/src/sys/contrib/ipfilter/netinet/ip_auth.c:302: macro `WAKEUP' used with just one arg /usr/src/sys/contrib/ipfilter/netinet/ip_log.c:402: macro `WAKEUP' used with just one arg /usr/src/sys/contrib/ipfilter/netinet/ip_nat.c:1537: macro `MUTEX_INIT' used with too many (3) args /usr/src/sys/contrib/ipfilter/netinet/ip_state.c:136: warning: `TCP_MSL' redefined /usr/src/sys/netinet/ip_compat.h:2360: warning: this is the location of the previous definition /usr/src/sys/contrib/ipfilter/netinet/ip_state.c:546: macro `MUTEX_INIT' used with too many (3) args and the make stops. I then tried 4.1.12, with the same patches applied as from the link above. I get these errors during the build. gcc -Wall -Wuninitialized -Wstrict-prototypes -O -I. -g -I../.. -D_BSD_SOURCE -DIPFILTER_LKM -DIPFILTER_LOG -DIPFILTER_LOOKUP -DIPFILTER_SCAN -Di386 -D__i386__ -DINET -DKERNEL -D_KERNEL -I/usr/include -I/sys -I/sys/sys -I/sys/arch -DKLD_MODULE -c ip_fil.c -o ip_fil.o ip_fil.c: In function `iplattach': ip_fil.c:304: sizeof applied to an incomplete type ip_fil.c: At top level: ip_fil.c:134: storage size of `ipfselwait' isn't known *** Error code 1 Stop in /usr/home/me/ip_fil4.1.12/BSD/FreeBSD-4.11-RELEASE-p16-i386. *** Error code 1 I then tried 4.1.13, and applied the same diffs from the link above. I then get these errors during the build. gcc -Wall -Wuninitialized -Wstrict-prototypes -O -Wmissing-prototypes -Wpointer-arith -Wno-sign-compare -Wno-traditional -Werror -I. -g -I../.. -D_BSD_SOURCE -DIPFILTER_LKM -DIPFILTER_LOG -DIPFILTER_LOOKUP -DIPFILTER_SCAN -Di386 -D__i386__ -DINET -DKERNEL -D_KERNEL -I/usr/include -I/sys -I/sys/sys -I/sys/arch -fno-builtin -DKLD_MODULE -c ip_fil.c -o ip_fil.o ip_fil.c:58: sys/selinfo.h: No such file or directory *** Error code 1 Stop in /usr/home/me/ip_fil4.1.13/BSD/FreeBSD-4.11-RELEASE-p16-i386. *** Error code 1 There is no selinfo.h in FBSD4.x as far as I know, those are 5.x files arent they? If I remove the selinfo.h include, then I start getting errors further along relating to sel* structures and variables. So does anyone have any ideas as to what I could do to fix these problems, and get ipfilter working on the box? I dont mind which version. Whichever is easier for you guys is fine with me. Any help would be appreciated. Regards /Cole -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Darren Reed Sent: Wednesday, April 19, 2006 3:45 PM To: [EMAIL PROTECTED] Cc: [email protected] Subject: Re: FreeBSD 4.x question > Hey. > > I want to know exactly what the procedure is for getting ipfilter 4.1.11 > built and installed on a FreeBSD box. The currently method described in > INSTALL.FreeBSD looks out of date if you compare the files that kinstall > uses. > > So does anyone have the exact procedure? If you look at INSTALL.FreeBSD, it does talk about a kinstall script. You should use FreeBSD-4.0/kinstall. Darren
