That's what I've played with. It's obvious, isn't it? Since setting net.inet.icmp.drop_redirect from 0 to 1 hasn't made any differences to the ICMP redirect problem - as I mentioned earlier, I think - I set up a test lab to play around and finally found, why ICMP redirects aren't working in pfSense. The problem lies in net.inet.ip.fastforwarding, which is set to on by default in pfsense while its default is off in freebsd. Set it to off and ICMP redirects again are working as expected:
# sysctl net.inet.ip.fastforwarding=0 net.inet.ip.fastforwarding: 1 -> 0 I should probably just stay out of this until you get things sorted out but I checked and my pfSense has "net.inet.ip.fastforwarding: 0" and redirects aren't working. Mitch --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
