Date: Sun, 17 Nov 2002 17:44:38 -0500 From: Scott Ullrich <sullrich@CRE8.COM> To: 'Archie Cobbs' <archie@dellroad.org>, Scott Ullrich <sullrich@CRE8.COM>, "'guido@freebsd.org'" <guido@freebsd.org> Cc: "'greg.panula@dolaninformation.com'" <greg.panula@dolaninformation.com>, David Kelly <dkelly@hiwaay.net>, FreeBSD-stable@FreeBSD.ORG Subject: RE: IPsec/gif VPN tunnel packets on wrong NIC in ipfw? Message-ID: <2F6DCE1EFAB3BC418B5C324F13934C9601D23C35@exchange.corp.cre8.com>
next in thread | raw e-mail | index | archive | help
I have reverted back to revision 1.130.2.39 of ip_input.c and that solved my issues! Guido, I am running IPFW2. If there is anything you need from me to help fix this issue, please let me know. Thanks again Archie for giving me the pointers of which file to revert. -Scott -----Original Message----- From: Archie Cobbs [mailto:archie@dellroad.org] Sent: Sunday, November 17, 2002 2:56 PM To: Scott Ullrich Cc: 'greg.panula@dolaninformation.com'; David Kelly; FreeBSD-stable@FreeBSD.ORG Subject: Re: IPsec/gif VPN tunnel packets on wrong NIC in ipfw? Scott Ullrich wrote: > I am also having this same problem. If I revert back to 4.7 RELEASE > the problem goes away. > > Anyone have an idea of what changed the default behavior between 4.7 > RELEASE and STABLE or if there is a better workaround other than > adding a rule before the divert statement allowing the internal > networks to talk? Try reverting rev. 1.130.2.40 of netinet/ip_input.c (there may be other files in this commit; didn't look (you could do it by time)). This is just a guess because it seems like it might be relevant. http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netinet/ip_input.c?only_with_t ag=RELENG_4 -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2F6DCE1EFAB3BC418B5C324F13934C9601D23C35>