From nobody@FreeBSD.org  Tue Jun  7 14:58:28 2011
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EA8AD1065673
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  7 Jun 2011 14:58:28 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22])
	by mx1.freebsd.org (Postfix) with ESMTP id DB2AB8FC12
	for <freebsd-gnats-submit@FreeBSD.org>; Tue,  7 Jun 2011 14:58:28 +0000 (UTC)
Received: from red.freebsd.org (localhost [127.0.0.1])
	by red.freebsd.org (8.14.4/8.14.4) with ESMTP id p57EwSoQ077233
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 7 Jun 2011 14:58:28 GMT
	(envelope-from nobody@red.freebsd.org)
Received: (from nobody@localhost)
	by red.freebsd.org (8.14.4/8.14.4/Submit) id p57EwSNC077232;
	Tue, 7 Jun 2011 14:58:28 GMT
	(envelope-from nobody)
Message-Id: <201106071458.p57EwSNC077232@red.freebsd.org>
Date: Tue, 7 Jun 2011 14:58:28 GMT
From: Viktor tujber <viktor.stujber@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: ipfw nat config does not accept nonexistent interfaces
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         157689
>Category:       kern
>Synopsis:       [ipfw] ipfw nat config does not accept nonexistent interfaces
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-ipfw
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Jun 07 15:00:21 UTC 2011
>Closed-Date:    
>Last-Modified:  Thu Jun 09 21:28:36 UTC 2011
>Originator:     Viktor tujber
>Release:        8.2-PRERELEASE
>Organization:
>Environment:
FreeBSD poring 8.2-PRERELEASE FreeBSD 8.2-PRERELEASE #4: Sun Feb 20 13:15:15 CET 2011     umage@poring:/usr/obj/usr/src/sys/PORING  i386

>Description:
ipfw accepts rules for interfaces that do not (yet) exist, and makes
them work seamlessly as the interfaces come and go. However, the 'ipfw nat'
addon feature is not compatible with ipfw's interface handling philosophy.
>How-To-Repeat:
# ipfw add 60000 allow via foobar
60000 allow ip from any to any via foobar
^-- works

# ipfw nat 100 config if foobar
ipfw: unknown interface name foobar
^-- doesn't work
>Fix:
A workaround using cloned_interfaces was suggested. This preemptively
creates a dummy interface to satisfy ipfw.

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->freebsd-ipfw 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Thu Jun 9 21:27:53 UTC 2011 
Responsible-Changed-Why:  
Reclassify and assign. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=157689 
>Unformatted:
