From nobody Thu Jan 19 14:19:01 2023 X-Original-To: pf@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4NyPrQ0VjQz2t3P7 for ; Thu, 19 Jan 2023 14:19:02 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4NyPrP6bsyz3NKR for ; Thu, 19 Jan 2023 14:19:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1674137941; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=y4ZpFb21cuT5fU8UzjaIcrz9Xn1OeG3ie9I7FcK61G0=; b=kyLKLUT3fIRrZXa7H00AxF7B8oMfNJZtyhvlBENMOfdexxPda4ROYFhKvYTSAgcQvDZXgz 3D0RStAkTZ7sLCHcm7aK7HxI3VEhdhbRW+ZucBH3dQStfjKXDwyzHXZfgeOiPV8ywdFX2l NBVmY5m4NROOcjTRls3JfP/s7UT1BdaqjRU2WoOv2MCBUKv8kzrqh7nYmIUmsZSFkitFd+ CWgd4CyiV1P7wWnlJF/aYGYiBa4JLQyZUEURzsz0YdhOlS/ablZzyEsmb7k1/qdKKa/48U 1GDvzN7hnLUxljL9tr3dxqlsit2Hi7WGxKT36RqmQduPKWuah1uhMKokw/HCsQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1674137941; a=rsa-sha256; cv=none; b=UEclVNiPHPQvMcroZfvhx7dT+W6dX9OmRvhpc/uN98CF6XRWnQMC99uxdtOWhCpmYKTAC0 t3OndAy6wtWS7jV0RZArw02wLqG3ccB7eWiXcs7w89ZuSOsAjEyQZ17WT2drrEJAs0tAIk VKI2eo7huO1/w9tFOIQRiO+u+kZ31c2P5aZ3onGRAfr3mM08ULWa9B58ephv1ECFQmeULl PwJSjxmGpfSfQIRFg9cduVoNvAXsmG4by5PSUFSYQXil5LT2hF8Pt1nj7MQzYAgyeYAIPO t4m6pPozB8ouM5n0n3CEijLIdmPLPwPI8XrwT2X75AvNmjDhJHEFa5dOBqXl5Q== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4NyPrP5YdyztS0 for ; Thu, 19 Jan 2023 14:19:01 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 30JEJ1IC077737 for ; Thu, 19 Jan 2023 14:19:01 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 30JEJ1Wh077736 for pf@FreeBSD.org; Thu, 19 Jan 2023 14:19:01 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 268717] [pf] rdr rules don't work for traffic originating at localhost Date: Thu, 19 Jan 2023 14:19:01 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 13.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: dfr@rabson.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Technical discussion and general questions about packet filter (pf) List-Archive: https://lists.freebsd.org/archives/freebsd-pf List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-pf@freebsd.org X-BeenThere: freebsd-pf@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268717 --- Comment #11 from dfr@rabson.org --- I was testing this again today with a back-port of my patch to stable/13 an= d it seems to work fairly well so far. It doesn't work if the source address is 127.0.0.1 since the redirected packet still has a 127.0.0.1 as source addre= ss but I can ignore that for now. --=20 You are receiving this mail because: You are the assignee for the bug.= From nobody Sat Jan 21 08:52:35 2023 X-Original-To: pf@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4NzVVq6bJrz2srQ5 for ; Sat, 21 Jan 2023 08:52:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4NzVVq5bgrz3mCL for ; Sat, 21 Jan 2023 08:52:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1674291155; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=BedJeBAcTyIdZ7T1IzHJS0AucY9eEi//bFj/T12BqtE=; b=Y5yzioCQ8jOfwM4qouCM2KimTq7DqhfpA8npDliifN03SF51GeJC5O6kkqwTSiJq1BgqQa R7rndgtt6+ed3IGIlcbDuJMQGHQix7rnL2MCrs0LKcClxAxN8NYOqR7rLNvwoQeATQIWbZ 6l61D9zM/a+1JbY4f5CJy5uJsIt9+GFaSVv9SInNcQ4OESOSoxJKUsm+NPl+3vrj/4wtXJ lAEvl16Mx4tPiNofryHLDKK46nOO3GFVrARGXQ+YaodawL60hBM1vpzlIm//8ntzTJcr1D ykBx1/oBilwr+gnM+ec3ikVA4kPBqrEncXFNocfnZ3MVBYa8U8+XhFW3KPBP+A== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1674291155; a=rsa-sha256; cv=none; b=ai5FAzY+v7Wb3Lo5+zcC7Y39P4yJY3HiJnASKFt/aF1VRhiQfADvYP5OfihaMhjVlncCjW inKZg3q+lyRtm3uOsVn+fXdcpYdhTsYvHBrv+PDS47k+PDdU5TNAKlsnEY0ZPpGIW46X7t oAHIwOhhx4LFbzjSK0GMNybxzC68+vsI0mjL6IAHmMFT84samjaGorTbDifJTOSoKwXCsZ QsWA7eUFBJ1cg12BHTK4w5tlKpikbDUsld/YlveSJ+i3wvHzsh3aDMfumIlxvfxsuGuXy0 UmOxc0qP2vSc5It/P4Ko9GF3qTO5OmCQhv4x47CFJdBTActC7zXfUAeu/+rdzQ== Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2610:1c1:1:606c::50:1d]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4NzVVq4h54z149D for ; Sat, 21 Jan 2023 08:52:35 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org ([127.0.1.5]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id 30L8qZqF062293 for ; Sat, 21 Jan 2023 08:52:35 GMT (envelope-from bugzilla-noreply@freebsd.org) Received: (from www@localhost) by kenobi.freebsd.org (8.15.2/8.15.2/Submit) id 30L8qZTB062292 for pf@FreeBSD.org; Sat, 21 Jan 2023 08:52:35 GMT (envelope-from bugzilla-noreply@freebsd.org) X-Authentication-Warning: kenobi.freebsd.org: www set sender to bugzilla-noreply@freebsd.org using -f From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 268717] [pf] rdr rules don't work for traffic originating at localhost Date: Sat, 21 Jan 2023 08:52:35 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 13.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: kp@freebsd.org X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: pf@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated List-Id: Technical discussion and general questions about packet filter (pf) List-Archive: https://lists.freebsd.org/archives/freebsd-pf List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-pf@freebsd.org X-BeenThere: freebsd-pf@freebsd.org MIME-Version: 1.0 X-ThisMailContainsUnwantedMimeParts: N https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268717 --- Comment #12 from Kristof Provost --- (In reply to dfr from comment #11) I've poked at it for a little bit more, but I think I've mostly succeeded in confusing myself more. I think part of the issue is that we only create the state on the inbound side (so after we've sent the packet out on lo0 and do= ne the outbound processing), and then end up sending it out again. In any event, this is going to need careful analysis and thought, and that's just not going to happen until my vacation is over. I'll keep this on my to= do list, but expect no progress before March. --=20 You are receiving this mail because: You are the assignee for the bug.=