From owner-freebsd-pf@freebsd.org Sun Oct 22 14:43:33 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7EF0CE53EFC for ; Sun, 22 Oct 2017 14:43:33 +0000 (UTC) (envelope-from m.bryn1u@gmail.com) Received: from mail-vk0-x22b.google.com (mail-vk0-x22b.google.com [IPv6:2607:f8b0:400c:c05::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 25A9968361 for ; Sun, 22 Oct 2017 14:43:33 +0000 (UTC) (envelope-from m.bryn1u@gmail.com) Received: by mail-vk0-x22b.google.com with SMTP id t203so9776926vke.0 for ; Sun, 22 Oct 2017 07:43:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=Viv2wkrDcPzR7fXhD7BaIjHrLKRdVEND3vCOsl6Za50=; b=LU7MrJC3j2We0k0auE2AHCBE7AVw+f3jX3BS6xKjp0DZI54F9FKxni8WYMa+gzaoIC SePgOSPG8MPhNnHxAxhb3fkPjoq/YasgqJtv8drg+AW2Rz5k3JYB5iPTzJiJxpiLLvxQ cMGrT9KtzFtFrLqy5u5/zgvfFBWArNhyJ9x26eUkuIuKoQlrG6nyTWOzx4RUeT8D82IC TBUfhitaxgCH4K7SCt4ZkT9NOHuSoUb97bTLba3Ki17S7Y0SJoKANECReUPxUg21aOHS G7LB87QIhuUZ0+6Jh8OuaYj6178t9kDjGx/tLCbn6CaZi+VwonPuvKsY6cwKEZ95JPVQ xxXw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=Viv2wkrDcPzR7fXhD7BaIjHrLKRdVEND3vCOsl6Za50=; b=qt5LUfUODcHps3i28lsKkD6qTr3CTenv6veGh7qajU1TFAzG0sgIV6Mg0R540hC51O Q0b1fRPmkMtj0jsqXReMJvy1ZEd/TYaXOQPz0zn8KQzXkGUilD53rSanze2LfyakFw0l bnHXK+tED6as2fLRtBwsJV6e23vWxbxyseThnAr63n3QWaWFhCMlyMCEQ774FvYa5sUx oIqQbyTmG2o6KA4vSnuoB/q8EFyvCMQ8aHPgErJP5JPRPJig0F9kjxxQegTMjeqLv76h AN4tXDKdygtkHuevLSxmWEMkOf9Fl6v9a7R8KtmBb0gabyv7Zz2GYM9VAosL/NOyof3M YJ9w== X-Gm-Message-State: AMCzsaUcx7OnSirQ7P22RHjXO7RmVqPOfhPfvBdHm4TIdRarCnQZ7/XU F6MvP9XmFslMeDvhOvjUBjFqAQV16JvXnnTn7/g= X-Google-Smtp-Source: ABhQp+Se/4FsTkjoDXcDT4xkaIg7uV2wk411K828Na6doX6vj/LGKF1WDgDWBM1HpJ3RstRZzQQr+QeGtyvIB5HlW5c= X-Received: by 10.31.161.5 with SMTP id k5mr7979171vke.96.1508683411907; Sun, 22 Oct 2017 07:43:31 -0700 (PDT) MIME-Version: 1.0 Received: by 10.159.53.131 with HTTP; Sun, 22 Oct 2017 07:43:31 -0700 (PDT) From: "bryn1u85 ." Date: Sun, 22 Oct 2017 16:43:31 +0200 Message-ID: Subject: Feature ALTQ in PF in FreeBSD. To: freebsd-pf@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Oct 2017 14:43:33 -0000 Hello everone, I was reading about permanently finished development of ALTQ in PF in OpenBSD (6.X version). Someone can tell me how doest il look like from FreeBSD side ? Will FreeBSD still developing ALTQ or either leave it ? From owner-freebsd-pf@freebsd.org Sun Oct 22 15:00:32 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C8C22E54603 for ; Sun, 22 Oct 2017 15:00:32 +0000 (UTC) (envelope-from lists@opsec.eu) Received: from home.opsec.eu (home.opsec.eu [IPv6:2001:14f8:200::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8BBCF69182 for ; Sun, 22 Oct 2017 15:00:32 +0000 (UTC) (envelope-from lists@opsec.eu) Received: from pi by home.opsec.eu with local (Exim 4.89 (FreeBSD)) (envelope-from ) id 1e6Hjs-0003rU-S2; Sun, 22 Oct 2017 17:00:32 +0200 Date: Sun, 22 Oct 2017 17:00:32 +0200 From: Kurt Jaeger To: "bryn1u85 ." Cc: freebsd-pf@freebsd.org Subject: Re: Feature ALTQ in PF in FreeBSD. Message-ID: <20171022150032.GL86601@home.opsec.eu> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Oct 2017 15:00:32 -0000 Hi! > I was reading about permanently finished development of ALTQ in PF in > OpenBSD (6.X version). Do you have a link to that ? > Someone can tell me how doest il look like from > FreeBSD side ? Will FreeBSD still developing ALTQ or either leave it ? I have those links that discuss ALTQ. Maybe there any more recent pages that discuss this issue. http://bsdly.blogspot.de/2011/07/anticipating-post-altq-world.html https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=208409 -- pi@opsec.eu +49 171 3101372 3 years to go ! From owner-freebsd-pf@freebsd.org Sun Oct 22 16:36:03 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F1FB7E56461 for ; Sun, 22 Oct 2017 16:36:03 +0000 (UTC) (envelope-from m.bryn1u@gmail.com) Received: from mail-ua0-x229.google.com (mail-ua0-x229.google.com [IPv6:2607:f8b0:400c:c08::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id A864A6CD64 for ; Sun, 22 Oct 2017 16:36:03 +0000 (UTC) (envelope-from m.bryn1u@gmail.com) Received: by mail-ua0-x229.google.com with SMTP id e46so11340932uaa.4 for ; Sun, 22 Oct 2017 09:36:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=PALjqpjZ45AIZmEMn77TL2sA5hbj78Qm6lPaTXdzlic=; b=mu4kwfwLp+e+5ThyOmvpY3R54CAeJDotqi6Uc2ok6LPMnTA8vjA17BTjVTq68thr5j bO4D5T48xxjDKdKtzmffs/ph8dIlX1ZNy8M3gPPtXXtyUI8ncgd2Jj4F3l67CYXMSPng g+i1uwjavhcdAP1pmndMQxFFC/Zdi3p3NwE408j6OB9Ma8+yGd0ABZxB3XczxbrYG4HY lYBK3iR3J3Pf3pQ/qGAYsUMWzeYROi7k9u4zmMgiZBPzIC0BCrQGG8pQHtRdNg9M6UD9 GABHEvQciTGeDZ/2FCJk4kUukvo15SOyBpYwe4hTVQ05Vp9emX2d212CaEwN1QBzl1ar 0PVw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=PALjqpjZ45AIZmEMn77TL2sA5hbj78Qm6lPaTXdzlic=; b=NKSXD7bYZTrrq8EizKKcLxynh+TkFpyqV0KAZhFKjuHvm4bCHHHrlHm5r0Q+1p7aaJ C6Z0+RW2cG3POm6K+6IRgcW19wt88yklxpJwA7thwg985c84JcUOXWvx6Zy7SUTpzd28 3XLkgLJqrrEP9O6aZiPtIkzxrrPWW16HjYnojwJri+Y4D86nUpTCLaLXiuG04MeVn50K PkZyZxF1KnxDgGckDDTDaywwC/PuaKyoBC/G+zt35yBHzLpPmTeBOXrh+B3GOBWWjTsb DZYWCX3NDpCs2mWnWEr0ad9pZJMPQ8z88WxgRFwMChecwnEwWPzmlfRJc0zEObk1ETDc T6XA== X-Gm-Message-State: AMCzsaVtF0YZFjfecG7hh3BMUm+JtlfY2AuMNcwl+iT1lCYGj6Zago6l uOxT9VTYk7idwl76kYH7/IWyYIJSvnvS4sJW3LKf5A== X-Google-Smtp-Source: ABhQp+TYxzNrYnv2UB8nZ3mb3VVUzReY3QNDOSlema6xwHVyVfRNT0XWu2KUV4pLDwUtkAJVl+abAQBUDrBiAJXgI0U= X-Received: by 10.176.87.89 with SMTP id t25mr8485692uac.76.1508690162040; Sun, 22 Oct 2017 09:36:02 -0700 (PDT) MIME-Version: 1.0 Received: by 10.159.53.131 with HTTP; Sun, 22 Oct 2017 09:36:01 -0700 (PDT) In-Reply-To: <20171022150032.GL86601@home.opsec.eu> References: <20171022150032.GL86601@home.opsec.eu> From: "bryn1u85 ." Date: Sun, 22 Oct 2017 18:36:01 +0200 Message-ID: Subject: Re: Feature ALTQ in PF in FreeBSD. To: Kurt Jaeger Cc: freebsd-pf@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Oct 2017 16:36:04 -0000 Hey, http://undeadly.org/cgi?action=article&sid=20140419151959 2017-10-22 17:00 GMT+02:00 Kurt Jaeger : > Hi! > > > I was reading about permanently finished development of ALTQ in PF in > > OpenBSD (6.X version). > > Do you have a link to that ? > > > Someone can tell me how doest il look like from > > FreeBSD side ? Will FreeBSD still developing ALTQ or either leave it ? > > I have those links that discuss ALTQ. Maybe there any more recent > pages that discuss this issue. > > http://bsdly.blogspot.de/2011/07/anticipating-post-altq-world.html > > https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=208409 > > -- > pi@opsec.eu +49 171 3101372 3 years to > go ! > From owner-freebsd-pf@freebsd.org Sun Oct 22 20:05:14 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F09EBE33B1A for ; Sun, 22 Oct 2017 20:05:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id DEEFB7314C for ; Sun, 22 Oct 2017 20:05:14 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9MK5DV9006510 for ; Sun, 22 Oct 2017 20:05:14 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Sun, 22 Oct 2017 20:05:13 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Oct 2017 20:05:15 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #37 from Kristof Provost --- I do not understand this at all. There is no reason for the purge thread to= get stuck. There's also no reason for it apparently having run 7 times between freezing and when you restart the dtrace. (That's based on the purge_idx va= lue logged by the expired_states probe. 23544 - 21255 =3D=3D 327 * 7. (Please just don't stop it at all while you're performing the workaround. There's no reason for it, and stopping it runs the risk of missing interest= ing information). It still looks like we just don't wake up from the sx_sleep(pf_purge_thread, &pf_end_lock, ...) call, but that makes no sense. The only way for that to happen is if someone would be holding the pf_end_lock, but that lock is only taken when the pf module is unloaded (and by the purge thread, obviously). Do you see other strange behaviour on the system? If there's something wrong with the sleep/lock infrastructure I'd expect to see other strange things. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Mon Oct 23 06:18:16 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 73E61E41BC1 for ; Mon, 23 Oct 2017 06:18:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 60E236351F for ; Mon, 23 Oct 2017 06:18:16 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9N6IG9Q093965 for ; Mon, 23 Oct 2017 06:18:16 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Mon, 23 Oct 2017 06:18:16 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: hlh@restart.be X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2017 06:18:16 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #38 from hlh@restart.be --- (In reply to Kristof Provost from comment #37) The only thing that seems strange to me is the memory used on this system: top show: last pid: 37231; load averages: 0.19, 0.20, 0.16=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 up 3+17:01:05 08:04:01 73 processes: 1 running, 71 sleeping, 1 zombie CPU: 0.1% user, 0.0% nice, 0.2% system, 0.0% interrupt, 99.7% idle Mem: 69M Active, 76M Inact, 57M Laundry, 1727M Wired, 35M Free ARC: 597M Total, 70M MFU, 195M MRU, 1868K Anon, 4274K Header, 326M Other 55M Compressed, 212M Uncompressed, 3.84:1 Ratio Swap: 4096M Total, 356M Used, 3740M Free, 8% Inuse zfs-stats -M: ------------------------------------------------------------------------ ZFS Subsystem Report Mon Oct 23 08:04:34 2017 ------------------------------------------------------------------------ System Memory: 3.53% 69.41 MiB Active, 3.87% 76.07 MiB Inact 87.95% 1.69 GiB Wired, 0.00% 0 Cache 1.72% 33.71 MiB Free, 2.93% 57.48 MiB Gap Real Installed: 2.00 GiB Real Available: 98.34% 1.97 GiB Real Managed: 97.50% 1.92 GiB Logical Total: 2.00 GiB Logical Used: 94.64% 1.89 GiB Logical Free: 5.36% 109.78 MiB Kernel Memory: 147.94 MiB Data: 86.01% 127.24 MiB Text: 13.99% 20.70 MiB Kernel Memory Map: 512.00 MiB Size: 53.68% 274.86 MiB Free: 46.32% 237.14 MiB ------------------------------------------------------------------------ zfs-stats -A ------------------------------------------------------------------------ ZFS Subsystem Report Mon Oct 23 08:05:18 2017 ------------------------------------------------------------------------ ARC Summary: (HEALTHY) Memory Throttle Count: 0 ARC Misc: Deleted: 4.39m Recycle Misses: 0 Mutex Misses: 24.67m Evict Skips: 4.15b ARC Size: 233.77% 598.44 MiB Target Size: (Adaptive) 100.00% 256.00 MiB Min Size (Hard Limit): 12.50% 32.00 MiB Max Size (High Water): 8:1 256.00 MiB ARC Size Breakdown: Recently Used Cache Size: 22.91% 137.09 MiB Frequently Used Cache Size: 77.09% 461.35 MiB ARC Hash Breakdown: Elements Max: 41.80k Elements Current: 38.41% 16.06k Collisions: 448.17k Chain Max: 4 Chains: 471 ------------------------------------------------------------------------ Why ARC at 233% and 1727Mb wired? --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Mon Oct 23 07:17:23 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D92E0E430D2 for ; Mon, 23 Oct 2017 07:17:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id C72C86528E for ; Mon, 23 Oct 2017 07:17:23 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9N7HNu2078533 for ; Mon, 23 Oct 2017 07:17:23 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Mon, 23 Oct 2017 07:17:23 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: hlh@restart.be X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2017 07:17:24 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #39 from hlh@restart.be --- (In reply to Kristof Provost from comment #37) I'm really sorry because in my previous post I display the tail of dtrace2.log-after instead of dtrace2.log-before. I have deleted those files; Shame on me! Let's wait the next problem... --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Wed Oct 25 05:36:28 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 29065E3F214 for ; Wed, 25 Oct 2017 05:36:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 116FC81E6B for ; Wed, 25 Oct 2017 05:36:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.ysv.freebsd.org (Postfix) id 0DE84E3F213; Wed, 25 Oct 2017 05:36:28 +0000 (UTC) Delivered-To: pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0D951E3F212 for ; Wed, 25 Oct 2017 05:36:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id F04CA81E6A for ; Wed, 25 Oct 2017 05:36:27 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9P5aRYp007154 for ; Wed, 25 Oct 2017 05:36:27 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 223208] [pf] pf.conf syntax (:peer) rules load incorrectly Date: Wed, 25 Oct 2017 05:36:28 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: linimon@FreeBSD.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 05:36:28 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223208 Mark Linimon changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|freebsd-bugs@FreeBSD.org |pf@FreeBSD.org --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Wed Oct 25 06:37:33 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6736AE40BB6 for ; Wed, 25 Oct 2017 06:37:33 +0000 (UTC) (envelope-from dave@horsfall.org) Received: from viclamta25p.bpe.bigpond.com (viclamta25p.bpe.bigpond.com [203.38.21.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "", Issuer "Openwave Messaging Inc." (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 44DD283CC5 for ; Wed, 25 Oct 2017 06:37:29 +0000 (UTC) (envelope-from dave@horsfall.org) Received: from smtp.telstra.com ([10.10.26.4]) by viclafep10p-svc.bpe.nexus.telstra.com.au with ESMTP id <20171025051707.WSOT15990.viclafep10p-svc.bpe.nexus.telstra.com.au@smtp.telstra.com> for ; Wed, 25 Oct 2017 16:17:07 +1100 X-RG-Spam: Unknown X-Junkmail-Premium-Raw: score=8/83, refid=2.7.2:2017.10.25.44816:17:8.129, ip=, rules=__HAS_FROM, __TO_MALFORMED_2, __TO_NAME, __TO_NAME_DIFF_FROM_ACC, __BOUNCE_CHALLENGE_SUBJ, __BOUNCE_NDR_SUBJ_EXEMPT, __IN_REP_TO, __HAS_MSGID, __SANE_MSGID, __REFERENCES, __USER_AGENT, __MIME_VERSION, __CT, __CTYPE_HAS_BOUNDARY, __CTYPE_MULTIPART, __CTYPE_MULTIPART_MIXED, __MIME_TEXT_P2, __SUBJ_ALPHA_NEGATE, __NO_HTML_TAG_RAW, BODYTEXTP_SIZE_400_LESS, BODYTEXTP_SIZE_3000_LESS, BODY_SIZE_500_599, __MIME_TEXT_P1, __MIME_TEXT_ONLY, HTML_00_01, HTML_00_10, BODY_SIZE_5000_LESS, IN_REP_TO, MSG_THREAD, __TO_REAL_NAMES, LEGITIMATE_SIGNS, NO_URI_FOUND, NO_CTA_URI_FOUND, BODY_SIZE_1000_LESS, BODY_SIZE_2000_LESS, SMALL_BODY, __MIME_TEXT_P, REFERENCES, NO_URI_HTTPS, BODY_SIZE_7000_LESS, MIME_TEXT_ONLY_MP_MIXED Received: from aneurin.horsfall.org (110.141.193.233) by smtp.telstra.com (9.0.019.16-1) id 59D6803602D6A335 for freebsd-pf@freebsd.org; Wed, 25 Oct 2017 16:17:06 +1100 Received: from localhost (dave@localhost) by aneurin.horsfall.org (8.15.2/8.15.2) with ESMTP id v9P5GpQr028162 for ; Wed, 25 Oct 2017 16:17:06 +1100 (EST) (envelope-from dave@horsfall.org) Date: Wed, 25 Oct 2017 16:16:51 +1100 (EST) From: Dave Horsfall To: FreeBSD PF List Subject: Re: Had to allow localhost->localhost on FB 10.4 In-Reply-To: <5046b895-a40b-c092-b74f-adc0b0e54b7a@als.nnov.ru> Message-ID: References: <5046b895-a40b-c092-b74f-adc0b0e54b7a@als.nnov.ru> User-Agent: Alpine 2.21 (BSF 202 2017-01-01) X-GPG-Public-Key: http://www.horsfall.org/gpgkey.pub X-GPG-Fingerprint: 05B4 FFBC 0218 B438 66E0 587B EF46 7357 EF5E F58B X-Home-Page: http://www.horsfall.org/ X-Witty-Saying: "chmod 666 the_mode_of_the_beast" MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8BIT X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 06:37:33 -0000 On Fri, 20 Oct 2017, Max wrote: > set skip on lo > > (orĀ  set skip on lo0) Already have it... -- Dave Horsfall DTM (VK2KFU) "Those who don't understand security will suffer." From owner-freebsd-pf@freebsd.org Wed Oct 25 15:58:05 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C2297E4E220 for ; Wed, 25 Oct 2017 15:58:05 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id A5E4F736BA for ; Wed, 25 Oct 2017 15:58:05 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9PFw5Um011662 for ; Wed, 25 Oct 2017 15:58:05 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Wed, 25 Oct 2017 15:58:05 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: hlh@restart.be X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 15:58:05 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #40 from hlh@restart.be --- (In reply to hlh from comment #33) When I run the dtrace in batch, it end freqently with: dtrace: script './pf.dtrace2' matched 2 probes dtrace: buffer size lowered to 2m dtrace: processing aborted: Abort due to systemic unresponsiveness and so have no valuable trace when the problem arise. PS I'm now running=20 FreeBSD norquay.restart.bel 12.0-CURRENT FreeBSD 12.0-CURRENT #0 r322941:324563M: Tue Oct 24 16:18:12 CEST 2017=20=20=20=20 root@norquay.restart.bel:/usr/obj/usr/src/sys/NORQUAY arm64 And the problem crop up more freqently. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Wed Oct 25 19:27:56 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 9E850E526A1 for ; Wed, 25 Oct 2017 19:27:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8D9687F5D7 for ; Wed, 25 Oct 2017 19:27:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9PJRuSl068491 for ; Wed, 25 Oct 2017 19:27:56 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Wed, 25 Oct 2017 19:27:56 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 19:27:56 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #41 from Kristof Provost --- (In reply to hlh from comment #38) > Why ARC at 233% and 1727Mb wired? The ARC now keeps compressed data, so you can fit more in memory. I suspect that's a result of that. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Wed Oct 25 19:28:57 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C1481E5279A for ; Wed, 25 Oct 2017 19:28:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AD8A87F747 for ; Wed, 25 Oct 2017 19:28:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9PJSvAn071199 for ; Wed, 25 Oct 2017 19:28:57 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Wed, 25 Oct 2017 19:28:57 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 19:28:57 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #42 from Kristof Provost --- (In reply to hlh from comment #40) > dtrace: processing aborted: Abort due to systemic unresponsiveness You'd have to talk to a dtrace specialist about that. I'm not sure what cau= ses that. I still don't see this issue on my current boxes, so I don't know what I ca= n do right now. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Wed Oct 25 20:46:52 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 60001E53D03 for ; Wed, 25 Oct 2017 20:46:52 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.ysv.freebsd.org (unknown [127.0.1.3]) by mx1.freebsd.org (Postfix) with ESMTP id 47D398186B for ; Wed, 25 Oct 2017 20:46:52 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.ysv.freebsd.org (Postfix) id 47420E53D02; Wed, 25 Oct 2017 20:46:52 +0000 (UTC) Delivered-To: pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 46EE9E53D01 for ; Wed, 25 Oct 2017 20:46:52 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 351AA81869 for ; Wed, 25 Oct 2017 20:46:52 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9PKkpLE069031 for ; Wed, 25 Oct 2017 20:46:52 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 223208] [pf] pf.conf syntax (:peer) rules load incorrectly Date: Wed, 25 Oct 2017 20:46:51 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Oct 2017 20:46:52 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223208 Kristof Provost changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |kp@freebsd.org --- Comment #1 from Kristof Provost --- I can't reproduce this on stable/11. I see this: % echo "pass in quick on lo0 route-to (tun0 tun0:peer) inet" | sudo pfctl -= f - % sudo pfctl -sr pass in quick on lo0 route-to (tun0 10.0.0.2) inet all flags S/SA keep state --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Thu Oct 26 05:29:29 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1054FE3E28C for ; Thu, 26 Oct 2017 05:29:29 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id EC91D6C9D2 for ; Thu, 26 Oct 2017 05:29:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.ysv.freebsd.org (Postfix) id EBED1E3E28B; Thu, 26 Oct 2017 05:29:28 +0000 (UTC) Delivered-To: pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EB82BE3E28A for ; Thu, 26 Oct 2017 05:29:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id D9F456C9D1 for ; Thu, 26 Oct 2017 05:29:28 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9Q5TSGb012625 for ; Thu, 26 Oct 2017 05:29:28 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 223208] [pf] pf.conf syntax (:peer) rules load incorrectly Date: Thu, 26 Oct 2017 05:29:29 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: felix_mail@mail.ru X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2017 05:29:29 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223208 --- Comment #2 from Felix Z. --- Hi Kristof. Good news. And I checked once again: root@:~ # uname -a FreeBSD 11.1-RELEASE FreeBSD 11.1-RELEASE #0 r321309: Fri Jul 21 02:08:28 = UTC 2017 root@releng2.nyi.freebsd.org:/usr/obj/usr/src/sys/GENERIC amd64 root@:~ # echo "pass in quick on lo0 route-to (tun0 tun0:peer) inet" | pfct= l -f - root@:~ # pfctl -sr pass in quick on lo0 route-to ( 10.0.0.2) inet all flags S/SA keep state root@:~ # root@:~ # uname -a FreeBSD 11.1-STABLE FreeBSD 11.1-STABLE #0 r324751: Thu Oct 19 16:54:21 UTC 2017 root@releng2.nyi.freebsd.org:/usr/obj/usr/src/sys/GENERIC amd64 root@:~ # echo "pass in quick on lo0 route-to (tun0 tun0:peer) inet" | pfct= l -f - root@:~ # pfctl -sr pass in quick on lo0 route-to (tun0 10.0.0.2) inet all flags S/SA keep state I want to believe the future versions will not have this bug. Thanks. --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Thu Oct 26 06:13:46 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7CB51E3F0E0 for ; Thu, 26 Oct 2017 06:13:46 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 6B3AC6DE09 for ; Thu, 26 Oct 2017 06:13:46 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9Q6Di2I062096 for ; Thu, 26 Oct 2017 06:13:46 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Thu, 26 Oct 2017 06:13:45 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: hlh@restart.be X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2017 06:13:46 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #43 from hlh@restart.be --- (In reply to Kristof Provost from comment #42) I upgrade the PINE64 to CURRENT 324563 and now ntpd can't keep the clock fo= r a long time - after one hour or 2, the clock run too fast. I think that this clock drift is correlated with the pf problem. Does pf is sensitive to a clock running too fast and beeing reset backward = by ntpd? --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Thu Oct 26 19:17:44 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6124DE511C2 for ; Thu, 26 Oct 2017 19:17:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 41ADD65D7C for ; Thu, 26 Oct 2017 19:17:44 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9QJHi8X081689 for ; Thu, 26 Oct 2017 19:17:44 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 222126] pf is not clearing expired states Date: Thu, 26 Oct 2017 19:17:44 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2017 19:17:44 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222126 --- Comment #44 from Kristof Provost --- (In reply to hlh from comment #43) No, that shouldn't matter, unless the clock is completely wrong (i.e. not running, or running orders of magnitude slower than expected, or running backwards, ...) --=20 You are receiving this mail because: You are the assignee for the bug.= From owner-freebsd-pf@freebsd.org Thu Oct 26 19:18:57 2017 Return-Path: Delivered-To: freebsd-pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4FFD8E51220 for ; Thu, 26 Oct 2017 19:18:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 382ED65DE1 for ; Thu, 26 Oct 2017 19:18:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.ysv.freebsd.org (Postfix) id 09C39E5121F; Thu, 26 Oct 2017 19:18:57 +0000 (UTC) Delivered-To: pf@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 095BBE5121E for ; Thu, 26 Oct 2017 19:18:57 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id EC6B365DDF for ; Thu, 26 Oct 2017 19:18:56 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id v9QJIum5083428 for ; Thu, 26 Oct 2017 19:18:56 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 223208] [pf] pf.conf syntax (:peer) rules load incorrectly Date: Thu, 26 Oct 2017 19:18:56 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 11.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Oct 2017 19:18:57 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D223208 --- Comment #3 from Kristof Provost --- (In reply to Felix Z. from comment #2) This is very strange though. I don't see any obvious changes in pf or pfctl= or if_tun that would explain this and got included in 11.1. Were the two results you posted from different machines, or the same one af= ter an update? --=20 You are receiving this mail because: You are the assignee for the bug.=