From owner-freebsd-pf@FreeBSD.ORG Mon Feb 13 11:08:06 2012 Return-Path: Delivered-To: freebsd-pf@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3E03A106567C for ; Mon, 13 Feb 2012 11:08:06 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 2172A8FC17 for ; Mon, 13 Feb 2012 11:08:06 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1DB86cb090976 for ; Mon, 13 Feb 2012 11:08:06 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1DB85Ug090973 for freebsd-pf@FreeBSD.org; Mon, 13 Feb 2012 11:08:05 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 13 Feb 2012 11:08:05 GMT Message-Id: <201202131108.q1DB85Ug090973@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-pf@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-pf@FreeBSD.org X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Feb 2012 11:08:06 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- o kern/164402 pf [pf] pf crashes with a particular set of rules when fi o kern/164271 pf [pf] not working pf nat on FreeBSD 9.0 [regression] o kern/163208 pf [pf] PF state key linking mismatch o kern/160370 pf [pf] Incorrect pfctl check of pf.conf o kern/155736 pf [pf] [altq] borrow from parent queue does not work wit o kern/153307 pf [pf] Bug with PF firewall o kern/148290 pf [pf] "sticky-address" option of Packet Filter (PF) blo o kern/148260 pf [pf] [patch] pf rdr incompatible with dummynet o kern/147789 pf [pf] Firewall PF no longer drops connections by sendin o kern/143543 pf [pf] [panic] PF route-to causes kernel panic o bin/143504 pf [patch] outgoing states are not killed by authpf(8) o conf/142961 pf [pf] No way to adjust pidfile in pflogd o conf/142817 pf [patch] etc/rc.d/pf: silence pfctl o kern/141905 pf [pf] [panic] pf kernel panic on 7.2-RELEASE with empty o kern/140697 pf [pf] pf behaviour changes - must be documented o kern/137982 pf [pf] when pf can hit state limits, random IP failures o kern/136781 pf [pf] Packets appear to drop with pf scrub and if_bridg o kern/135948 pf [pf] [gre] pf not natting gre protocol o kern/135162 pf [pfsync] pfsync(4) not usable with GENERIC kernel o kern/134996 pf [pf] Anchor tables not included when pfctl(8) is run w o kern/133732 pf [pf] max-src-conn issue o kern/132769 pf [pf] [lor] 2 LOR's with pf task mtx / ifnet and rtent f kern/132176 pf [pf] pf stalls connection when using route-to [regress o conf/130381 pf [rc.d] [pf] [ip6] ipv6 not fully configured when pf st o kern/129861 pf [pf] [patch] Argument names reversed in pf_table.c:_co o kern/127920 pf [pf] ipv6 and synproxy don't play well together o conf/127814 pf [pf] The flush in pf_reload in /etc/rc.d/pf does not w o kern/127439 pf [pf] deadlock in pf f kern/127345 pf [pf] Problem with PF on FreeBSD7.0 [regression] o kern/127121 pf [pf] [patch] pf incorrect log priority o kern/127042 pf [pf] [patch] pf recursion panic if interface group is o kern/125467 pf [pf] pf keep state bug while handling sessions between s kern/124933 pf [pf] [ip6] pf does not support (drops) IPv6 fragmented o kern/124364 pf [pf] [panic] Kernel panic with pf + bridge o kern/122773 pf [pf] pf doesn't log uid or pid when configured to o kern/122014 pf [pf] [panic] FreeBSD 6.2 panic in pf o kern/120281 pf [pf] [request] lost returning packets to PF for a rdr o kern/120057 pf [pf] [patch] Allow proper settings of ALTQ_HFSC. The c o bin/118355 pf [pf] [patch] pfctl(8) help message options order false o kern/114567 pf [pf] [lor] pf_ioctl.c + if.c s conf/110838 pf [pf] tagged parameter on nat not working on FreeBSD 5. o kern/103283 pf pfsync fails to sucessfully transfer some sessions o kern/103281 pf pfsync reports bulk update failures o kern/93825 pf [pf] pf reply-to doesn't work o sparc/93530 pf [pf] Incorrect checksums when using pf's route-to on s o kern/92949 pf [pf] PF + ALTQ problems with latency o bin/86635 pf [patch] pfctl(8): allow new page character (^L) in pf. o kern/82271 pf [pf] cbq scheduler cause bad latency 48 problems total. From owner-freebsd-pf@FreeBSD.ORG Wed Feb 15 01:41:45 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 94DFE106566C for ; Wed, 15 Feb 2012 01:41:45 +0000 (UTC) (envelope-from dougs@dawnsign.com) Received: from mailfilter.dawnsign.com (pyxis.dawnsign.com [69.198.101.212]) by mx1.freebsd.org (Postfix) with ESMTP id 674AE8FC08 for ; Wed, 15 Feb 2012 01:41:45 +0000 (UTC) Received: from mailfilter.dawnsign.com (localhost [127.0.0.1]) by mailfilter.dawnsign.com (Postfix) with ESMTP id A0C7C9C3E1 for ; Tue, 14 Feb 2012 17:24:58 -0800 (PST) Received: from hydra.dawnsign.com (hydra.dawnsign.com [192.168.101.11]) by mailfilter.dawnsign.com (Postfix) with SMTP id 85FC895B44 for ; Tue, 14 Feb 2012 17:24:58 -0800 (PST) Content-class: urn:content-classes:message MIME-Version: 1.0 X-MimeOLE: Produced By Microsoft Exchange V6.5 Date: Tue, 14 Feb 2012 17:22:59 -0800 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Differences in PF between FBSD 8.2 & 9.0? Thread-Index: AczrgEvonjr1NRrmTju8tllVJFAifQ== From: "Doug Sampson" To: X-Virus-Scanned: ClamAV using ClamSMTP Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Feb 2012 01:41:45 -0000 I got bitten by PF when upgrading from 8.2 to 9.0. It refused to allow any incoming mail. I'm using spamd in conjunction with pf. I use a combination of natting along with redirections in conjunction with the normal pass/block rules. =20 I cannot for the life of me find a list of significant changes in pf between these two versions. Is there a link to where I can peruse such changes and adjust pf.conf accordingly? =20 Is the pf configuration for OpenBSD 5.0 the same as OpenBSD 4.5? Is it safe to use OpenBSD 5.0's config pages on pf when configuring pf.conf for FBSD 9.0? =20 I ran 'pfctl -vvnf /etc/pf.conf' and that didn't burp up any error messages as far as I can determine. =20 ~Doug =20 From owner-freebsd-pf@FreeBSD.ORG Wed Feb 15 01:59:43 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C31A61065784 for ; Wed, 15 Feb 2012 01:59:43 +0000 (UTC) (envelope-from dougs@dawnsign.com) Received: from mailfilter.dawnsign.com (pyxis.dawnsign.com [69.198.101.212]) by mx1.freebsd.org (Postfix) with ESMTP id 9F9F58FC14 for ; Wed, 15 Feb 2012 01:59:41 +0000 (UTC) Received: from mailfilter.dawnsign.com (localhost [127.0.0.1]) by mailfilter.dawnsign.com (Postfix) with ESMTP id 9C80F95B44 for ; Tue, 14 Feb 2012 17:59:41 -0800 (PST) Received: from hydra.dawnsign.com (hydra.dawnsign.com [192.168.101.11]) by mailfilter.dawnsign.com (Postfix) with SMTP id 7C5AD958F3 for ; Tue, 14 Feb 2012 17:59:41 -0800 (PST) Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable X-MimeOLE: Produced By Microsoft Exchange V6.5 Date: Tue, 14 Feb 2012 17:57:42 -0800 Message-ID: In-Reply-To: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Differences in PF between FBSD 8.2 & 9.0? Thread-Index: AczrgEvonjr1NRrmTju8tllVJFAifQABMloQ References: From: "Doug Sampson" To: "Doug Sampson" , X-Virus-Scanned: ClamAV using ClamSMTP Cc: Subject: RE: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Feb 2012 01:59:43 -0000 > I got bitten by PF when upgrading from 8.2 to 9.0. It refused to allow > any incoming mail. I'm using spamd in conjunction with pf. I use a > combination of natting along with redirections in conjunction with the > normal pass/block rules. >=20 > I cannot for the life of me find a list of significant changes in pf > between these two versions. Is there a link to where I can peruse such > changes and adjust pf.conf accordingly? >=20 > Is the pf configuration for OpenBSD 5.0 the same as OpenBSD 4.5? Is it > safe to use OpenBSD 5.0's config pages on pf when configuring pf.conf > for FBSD 9.0? >=20 > I ran 'pfctl -vvnf /etc/pf.conf' and that didn't burp up any error > messages as far as I can determine. >=20 I forgot to mention that I'm running 9.0-RELEASE. ~Doug From owner-freebsd-pf@FreeBSD.ORG Wed Feb 15 09:11:58 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F3182106566B for ; Wed, 15 Feb 2012 09:11:58 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-bk0-f54.google.com (mail-bk0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id 78B8F8FC17 for ; Wed, 15 Feb 2012 09:11:58 +0000 (UTC) Received: by bkcjg1 with SMTP id jg1so908246bkc.13 for ; Wed, 15 Feb 2012 01:11:55 -0800 (PST) Received: by 10.205.117.141 with SMTP id fm13mr10747354bkc.133.1329297114980; Wed, 15 Feb 2012 01:11:54 -0800 (PST) Received: from dfleuriot-at-hi-media.com ([83.167.62.196]) by mx.google.com with ESMTPS id y9sm5150281bkw.5.2012.02.15.01.11.53 (version=SSLv3 cipher=OTHER); Wed, 15 Feb 2012 01:11:54 -0800 (PST) Message-ID: <4F3B76DB.1040301@my.gd> Date: Wed, 15 Feb 2012 10:11:55 +0100 From: Damien Fleuriot User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:10.0) Gecko/20120129 Thunderbird/10.0 MIME-Version: 1.0 To: freebsd-pf@freebsd.org References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Gm-Message-State: ALoCoQnKLLm7p0oYsCtkmlmbTKawKjGrDktAFIIyMaX/TW/tGYOjcLM4K6psnfbZAS+a/mryDdYj Subject: Re: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Feb 2012 09:11:59 -0000 On 2/15/12 2:22 AM, Doug Sampson wrote: > I got bitten by PF when upgrading from 8.2 to 9.0. It refused to allow > any incoming mail. I'm using spamd in conjunction with pf. I use a > combination of natting along with redirections in conjunction with the > normal pass/block rules. > Toggle logging on both your default drop rule and your allow mail ones. Then tcpdump -nei pflog0 ip and port 465 (or 25, whichever) See what rule number matches your packets, then find out what rule that is with pfctl -vvvsr There hasn't been a syntax change from 8.2 to 9.0, however I think that's planned for 10.0 From owner-freebsd-pf@FreeBSD.ORG Wed Feb 15 15:53:27 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0DCFB106566C for ; Wed, 15 Feb 2012 15:53:27 +0000 (UTC) (envelope-from jhellenthal@gmail.com) Received: from mail-iy0-f182.google.com (mail-iy0-f182.google.com [209.85.210.182]) by mx1.freebsd.org (Postfix) with ESMTP id C60958FC0C for ; Wed, 15 Feb 2012 15:53:26 +0000 (UTC) Received: by iaeo4 with SMTP id o4so2091208iae.13 for ; Wed, 15 Feb 2012 07:53:26 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=sender:date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to; bh=ULJ1PN9E6hq7Az7ywq3jiEoppj0cwn6hoJ5vV2CRZ0A=; b=auxEr/6gcDIBNF1p2Gktbg/aONkMGtLya3gE6QFiX0Oqces0n5RZHsO5a3zpFp8/HA cl5/4voNKcwJgP+TTgkGbAFuODDqhOGvw+Oc5gqom9AxEIdtYCyx0xnCptgxmhhRMmRr 3hw9diZfYVP1jnEUmTQtqLeQqzFh8kklmmN6M= Received: by 10.42.19.65 with SMTP id a1mr33897427icb.48.1329319774230; Wed, 15 Feb 2012 07:29:34 -0800 (PST) Received: from DataIX.net (adsl-99-181-151-123.dsl.klmzmi.sbcglobal.net. [99.181.151.123]) by mx.google.com with ESMTPS id d15sm6389043ibf.7.2012.02.15.07.29.32 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 15 Feb 2012 07:29:32 -0800 (PST) Sender: Jason Hellenthal Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.5/8.14.5) with ESMTP id q1FFTUfN018396 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 15 Feb 2012 10:29:30 -0500 (EST) (envelope-from jhell@DataIX.net) Received: (from jhell@localhost) by DataIX.net (8.14.5/8.14.5/Submit) id q1FFTSaS013744; Wed, 15 Feb 2012 10:29:28 -0500 (EST) (envelope-from jhell@DataIX.net) Date: Wed, 15 Feb 2012 10:29:28 -0500 From: Jason Hellenthal To: Damien Fleuriot Message-ID: <20120215152928.GA23782@DataIX.net> References: <4F3B76DB.1040301@my.gd> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4F3B76DB.1040301@my.gd> Cc: freebsd-pf@freebsd.org Subject: Re: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Feb 2012 15:53:27 -0000 On Wed, Feb 15, 2012 at 10:11:55AM +0100, Damien Fleuriot wrote: > On 2/15/12 2:22 AM, Doug Sampson wrote: > > I got bitten by PF when upgrading from 8.2 to 9.0. It refused to allow > > any incoming mail. I'm using spamd in conjunction with pf. I use a > > combination of natting along with redirections in conjunction with the > > normal pass/block rules. > > > > Toggle logging on both your default drop rule and your allow mail ones. > > Then tcpdump -nei pflog0 ip and port 465 (or 25, whichever) > See what rule number matches your packets, then find out what rule that > is with pfctl -vvvsr > pftop may be of use to you here as well. Fire it up and hit the number 6 to watch for which rules are getting more hits than others. -- ;s =; From owner-freebsd-pf@FreeBSD.ORG Thu Feb 16 10:13:38 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C48191065670 for ; Thu, 16 Feb 2012 10:13:38 +0000 (UTC) (envelope-from arved@FreeBSD.org) Received: from mail01.rise-w.com (mail01.rise-w.com [88.116.105.226]) by mx1.freebsd.org (Postfix) with ESMTP id 7535E8FC14 for ; Thu, 16 Feb 2012 10:13:38 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail01.rise-w.com (Postfix) with ESMTP id 8072B40E0A2; Thu, 16 Feb 2012 11:13:36 +0100 (CET) Received: from [192.168.129.12] (unknown [213.33.60.225]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.rise-world.com (Postfix) with ESMTPSA id 0DBA140E0A1; Thu, 16 Feb 2012 11:13:35 +0100 (CET) Message-ID: <4F3CD6CF.7010102@FreeBSD.org> Date: Thu, 16 Feb 2012 11:13:35 +0100 From: =?ISO-8859-1?Q?Tilman_Keskin=F6z?= User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:9.0) Gecko/20111229 Thunderbird/9.0 MIME-Version: 1.0 To: Jason Hellenthal References: <4F3B76DB.1040301@my.gd> <20120215152928.GA23782@DataIX.net> In-Reply-To: <20120215152928.GA23782@DataIX.net> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: freebsd-pf@freebsd.org Subject: Re: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Feb 2012 10:13:38 -0000 * Jason Hellenthal [Wed, 15 Feb 2012 10:29:28 -0500]: > > pftop may be of use to you here as well. Fire it up and hit the number 6 > to watch for which rules are getting more hits than others. > FYI: pftop port is marked broken on 9.0 From owner-freebsd-pf@FreeBSD.ORG Thu Feb 16 10:16:18 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E1E331065672 for ; Thu, 16 Feb 2012 10:16:18 +0000 (UTC) (envelope-from arved@FreeBSD.org) Received: from mail01.rise-w.com (mail01.rise-w.com [88.116.105.226]) by mx1.freebsd.org (Postfix) with ESMTP id 909738FC18 for ; Thu, 16 Feb 2012 10:16:18 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail01.rise-w.com (Postfix) with ESMTP id 84BB740E0A9; Thu, 16 Feb 2012 11:16:17 +0100 (CET) Received: from [192.168.129.12] (unknown [213.33.60.225]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.rise-world.com (Postfix) with ESMTPSA id 196BD40E0A1; Thu, 16 Feb 2012 11:16:16 +0100 (CET) Message-ID: <4F3CD770.2060304@FreeBSD.org> Date: Thu, 16 Feb 2012 11:16:16 +0100 From: =?ISO-8859-1?Q?Tilman_Keskin=F6z?= User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:9.0) Gecko/20111229 Thunderbird/9.0 MIME-Version: 1.0 To: freebsd-pf@freebsd.org References: <4F3B76DB.1040301@my.gd> <20120215152928.GA23782@DataIX.net> <4F3CD6CF.7010102@FreeBSD.org> In-Reply-To: <4F3CD6CF.7010102@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Subject: Re: Differences in PF between FBSD 8.2 & 9.0? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Feb 2012 10:16:19 -0000 * Tilman Keskinöz [Thu, 16 Feb 2012 11:13:35 +0100]: > * Jason Hellenthal [Wed, 15 Feb 2012 10:29:28 -0500]: >> >> pftop may be of use to you here as well. Fire it up and hit the number 6 >> to watch for which rules are getting more hits than others. >> > > FYI: pftop port is marked broken on 9.0 ...it was fixed two days ago :) From owner-freebsd-pf@FreeBSD.ORG Fri Feb 17 19:55:03 2012 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id ED5881065675 for ; Fri, 17 Feb 2012 19:55:03 +0000 (UTC) (envelope-from robrob2626@yahoo.com) Received: from nm19.bullet.mail.ne1.yahoo.com (nm19.bullet.mail.ne1.yahoo.com [98.138.90.82]) by mx1.freebsd.org (Postfix) with SMTP id 927588FC14 for ; Fri, 17 Feb 2012 19:55:03 +0000 (UTC) Received: from [98.138.90.57] by nm19.bullet.mail.ne1.yahoo.com with NNFMP; 17 Feb 2012 19:42:35 -0000 Received: from [98.138.226.160] by tm10.bullet.mail.ne1.yahoo.com with NNFMP; 17 Feb 2012 19:42:35 -0000 Received: from [127.0.0.1] by omp1061.mail.ne1.yahoo.com with NNFMP; 17 Feb 2012 19:42:35 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 820294.60708.bm@omp1061.mail.ne1.yahoo.com Received: (qmail 90047 invoked by uid 60001); 17 Feb 2012 19:42:35 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1329507755; bh=8uQG9Djg46b0FsAbL+kPFXIn5n98gAarnv+qumkT6ws=; h=X-YMail-OSG:Received:X-Mailer:Message-ID:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type; b=bnCgJuhz0rxTj52EsCIk1ygxc2LDgS3WAH2y0+j8bzR+vxNVoYodjUSMViEwfOl59dEfaDijcCS318y/cn0rfyfo01eB3KmIv9FsjNxfCLH7Jq660xzV0iT6do3RS5qFp6EZ+x931xPrfDyovVlj5gQWGB4yURx1V5jOFD6eVmA= DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:X-Mailer:Message-ID:Date:From:Reply-To:Subject:To:MIME-Version:Content-Type; b=rVMyolTPOdzlHYaZLc0eEDYMTU3+bSVZodT+95TQSWjAW0cmMYxHrTvGWjIGuNiPE6WOkmdQsEPVzhTYSETnLmYy/DnzhLBsg9cD6Qtpc/tSPSTOoLS2ZVWtZ+WQRj5QP0I3u+yx2SxXiM0/Iq2lhMLz0LFxhOPMzNZHdwlxn9c=; X-YMail-OSG: iadUwCQVM1kgzgl1iZWin5Oll7oDj8n5beXhThv9UeUXe3k nSkwYX1xNUwOeZBlRxITy1Y3bhYuSXruwNbuW0EZygzQ1uHM.nz1eflDA5iC 992sY0z4d1eZt69gXDLGHgm.RpZxVDkZWn2hfChRuxpP4ZSX0aSzSoI1gVpg G2t4FozBKMkvZsxDc.XW1t78LIrfixaYBLw9oXgd34UmzUJAM6jCeamg5yua Sde27j9l84JoeHxKRwIAz7vscLGX83AyQj0PDmnnWeHFkBf1rDooZXpTbFHX RTatsezjNvMsHCDXAwfV11fKm67eHtWTnZwldTsxyUm.svhnIcLwB56nlhpo iCFN8.Yzid2sri_q1ntJW9gxyrM6nF._pmB9PHyqCxPqdsNLjp9c9b5vsGmR BidO0MB8sVnljie5lTo1BXlgDaX.C50Qsgo4tEb.G1W.jafbJP8EZ1m7jVi4 zsz89P1qeHT.xJtMhFU1ye7n0iwsl6SD..QzvQdphl61HePxNDpl3eNGVgHu PTsJZ5.fgNGtnvZLEp6Ndn3DsqgLiDFFIvapPIgA9TZyRJxkJKPfZ2grYgol 95t50bBLnoIqpof15uOMtUoP5pWUXV5av91wyspC85B3YQpWm.jYZgm4FqsR ahxRgUIk6Q8oA_NIczOkyEuFL346sCk2agNpjoHjAsZYXdf40lnM85c...Dg bpY1ksAgh3yZojwmewywlD3vpdq.fpVYzrZT. Received: from [108.64.224.138] by web120505.mail.ne1.yahoo.com via HTTP; Fri, 17 Feb 2012 11:42:35 PST X-Mailer: YahooMailWebService/0.8.116.338427 Message-ID: <1329507755.83518.YahooMailNeo@web120505.mail.ne1.yahoo.com> Date: Fri, 17 Feb 2012 11:42:35 -0800 (PST) From: Robert Z To: "freebsd-pf@freebsd.org" MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: FreeBSD 9.0-RELEASE: VIMAGE and PF, Constant Kernel Panic X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Robert Z List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Feb 2012 19:55:04 -0000 I am getting constant kernel panics with VIMAGE and PF on FreeBSD 9-RELEASE= with jails.=0A=0AI have tried diffrent PF configurations with VIMAGE + epa= ir or VIMAGE + netgragh and still get kernel panics.=0AThe kernel panics st= op as soon as I disable PF in rc.conf.=0A=0AExample=A0of setup PF + VIMAGE = + epair.=0Ahttp://wiki.polymorf.fr/index.php/Howto:FreeBSD_jail_vnet=0A=0AE= xample of setup PF + VIMAGE + netgragh =A0=0Ahttp://druidbsd.sourceforge.ne= t/vimage.shtml=A0=0A=0A=0AI am attaching an example pic of said panics.=0Ah= ttp://i40.tinypic.com/2q00etz.jpg=0A=0A=0AAny advice on solving this will b= e=A0appreciated.=0ARobert=0A From owner-freebsd-pf@FreeBSD.ORG Fri Feb 17 20:17:42 2012 Return-Path: Delivered-To: freebsd-pf@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9EE9B106566C; Fri, 17 Feb 2012 20:17:42 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 71EB48FC0C; Fri, 17 Feb 2012 20:17:42 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1HKHgmO020661; Fri, 17 Feb 2012 20:17:42 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1HKHgLk020657; Fri, 17 Feb 2012 20:17:42 GMT (envelope-from linimon) Date: Fri, 17 Feb 2012 20:17:42 GMT Message-Id: <201202172017.q1HKHgLk020657@freefall.freebsd.org> To: linimon@FreeBSD.org, freebsd-bugs@FreeBSD.org, freebsd-pf@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/165252: [pf] [panic] kernel panics with VIMAGE and PF on FreeBSD 9.0 rel X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Feb 2012 20:17:42 -0000 Old Synopsis: [pf] ken panics with VIMAGE and PF on FreeBSD 9.0 rel New Synopsis: [pf] [panic] kernel panics with VIMAGE and PF on FreeBSD 9.0 rel Responsible-Changed-From-To: freebsd-bugs->freebsd-pf Responsible-Changed-By: linimon Responsible-Changed-When: Fri Feb 17 20:17:18 UTC 2012 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.cgi?pr=165252 From owner-freebsd-pf@FreeBSD.ORG Fri Feb 17 23:21:54 2012 Return-Path: Delivered-To: freebsd-pf@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3D83B1065672; Fri, 17 Feb 2012 23:21:54 +0000 (UTC) (envelope-from linimon@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 147278FC1E; Fri, 17 Feb 2012 23:21:54 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.5/8.14.5) with ESMTP id q1HNLrdc095669; Fri, 17 Feb 2012 23:21:53 GMT (envelope-from linimon@freefall.freebsd.org) Received: (from linimon@localhost) by freefall.freebsd.org (8.14.5/8.14.5/Submit) id q1HNLrIL095665; Fri, 17 Feb 2012 23:21:53 GMT (envelope-from linimon) Date: Fri, 17 Feb 2012 23:21:53 GMT Message-Id: <201202172321.q1HNLrIL095665@freefall.freebsd.org> To: dyr@smartspb.net, linimon@FreeBSD.org, gnats-admin@FreeBSD.org, freebsd-pf@FreeBSD.org From: linimon@FreeBSD.org Cc: Subject: Re: kern/164924: Re: kern/164271: pf] not working pf nat on FreeBSD 9.0 [regression] X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Feb 2012 23:21:54 -0000 Old Synopsis: Re: pf FreeBSD 9.0 New Synopsis: Re: kern/164271: pf] not working pf nat on FreeBSD 9.0 [regression] State-Changed-From-To: open->closed State-Changed-By: linimon State-Changed-When: Fri Feb 17 23:19:22 UTC 2012 State-Changed-Why: Misfiled followup to kern/164271; content migrated. Responsible-Changed-From-To: gnats-admin->freebsd-pf Responsible-Changed-By: linimon Responsible-Changed-When: Fri Feb 17 23:19:22 UTC 2012 Responsible-Changed-Why: http://www.freebsd.org/cgi/query-pr.cgi?pr=164924