> So if I understand it correctly: > IPFWDING_KERNEL=YES > IPFILTER_SWITCH=none > sets your scripts to full routing of all traffic > and > IPFWDING_KERNEL=FILTER_ON > IPFILTER_SWITCH=router > sets your scripts to routing with filtering > > Is this correct?
Yes. The reason you were not routing packets previously: With IPFWDING_KERNEL=FILTER_ON, the scripts only enable packet forwarding once the firewall filter rules are fully configured...with IPFILTER_SWITCH=none, you're not running a firewall filter, so the scripts take the (safe) option of not forwarding any traffic, rather than assuming you bungled the config and routing packets anyway (never a safe assumption for a security device). Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
