From owner-freebsd-pf@FreeBSD.ORG  Sun Nov 12 00:16:07 2006
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
X-Original-To: freebsd-pf@freebsd.org
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 88CFB16A47E
	for <freebsd-pf@freebsd.org>; Sun, 12 Nov 2006 00:16:07 +0000 (UTC)
	(envelope-from dhartmei@insomnia.benzedrine.cx)
Received: from insomnia.benzedrine.cx (insomnia.benzedrine.cx [62.65.145.30])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BCA9443D64
	for <freebsd-pf@freebsd.org>; Sun, 12 Nov 2006 00:15:48 +0000 (GMT)
	(envelope-from dhartmei@insomnia.benzedrine.cx)
Received: from insomnia.benzedrine.cx (dhartmei@localhost [127.0.0.1])
	by insomnia.benzedrine.cx (8.13.4/8.13.4) with ESMTP id kAC0Fjtm005016
	(version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO);
	Sun, 12 Nov 2006 01:15:46 +0100 (MET)
Received: (from dhartmei@localhost)
	by insomnia.benzedrine.cx (8.13.4/8.12.10/Submit) id kAC0FivE020084;
	Sun, 12 Nov 2006 01:15:44 +0100 (MET)
Date: Sun, 12 Nov 2006 01:15:42 +0100
From: Daniel Hartmeier <daniel@benzedrine.cx>
To: Kimi Ostro <kimimeister@gmail.com>
Message-ID: <20061112001542.GQ6819@insomnia.benzedrine.cx>
References: <42b497160611111207t2e168afdnba91607fd66371d2@mail.gmail.com>
	<200611112329.43326.max@love2party.net>
	<42b497160611111504q3a287bf9qa439e62deac62c36@mail.gmail.com>
	<20061111232425.GO6819@insomnia.benzedrine.cx>
	<42b497160611111538g6e07d972r5d0d6a577e43efc4@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <42b497160611111538g6e07d972r5d0d6a577e43efc4@mail.gmail.com>
User-Agent: Mutt/1.5.10i
Cc: freebsd-pf@freebsd.org
Subject: Re: Having a couple of issues
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 12 Nov 2006 00:16:07 -0000

On Sat, Nov 11, 2006 at 11:38:53PM +0000, Kimi Ostro wrote:

> The clients are users of FreeBSD, KDE and Mozilla Firefox.
> 
> So I guess it is harmless? am I the only one to have this issue?? I
> did not find much about it.

I'd say it's harmless.

It could be interesting to find out why this just popped up now, after
having been undetected for years before. I'm just curious about why a
client would do that.

Maybe it is somehow related to how client stacks react to running out
of source ports under high connection establishment rates. Something
like dropping one tcpcb that is not yet fully established to free up a
port for another new connection? And generating a RST to the peer of the
dropped tcpcb? Has something like that been added or enabled by default
recently in FreeBSD?

Daniel