From owner-freebsd-net@FreeBSD.ORG  Thu Apr 17 02:00:40 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2501D37B401
	for <freebsd-net@freebsd.org>; Thu, 17 Apr 2003 02:00:40 -0700 (PDT)
Received: from tokyo.ccrle.nec.de (tokyo.ccrle.nec.de [195.37.70.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C28FF43FB1
	for <freebsd-net@freebsd.org>; Thu, 17 Apr 2003 02:00:38 -0700 (PDT)
	(envelope-from Martin.Stiemerling@ccrle.nec.de)
Received: from venus.office (venus.office [10.1.1.11])
	by tokyo.ccrle.nec.de (8.12.9/8.12.8) with ESMTP id h3H90aVI020414;
	Thu, 17 Apr 2003 11:00:37 +0200 (CEST)
Received: from ccrle.nec.de (n-stiemerling.office [10.1.1.109])
	by venus.office (Postfix on SuSE Linux eMail Server 3.0) with ESMTP
	id 6422FE568; Thu, 17 Apr 2003 10:56:16 +0200 (CEST)
Message-ID: <3E9E6D34.5020100@ccrle.nec.de>
Date: Thu, 17 Apr 2003 11:00:36 +0200
From: Martin Stiemerling <Martin.Stiemerling@ccrle.nec.de>
Organization: NEC -- Network Labs Europe
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US;
	rv:1.0rc3) Gecko/20020619
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Daniel Lang <dl@leo.org>
References: <20030417072027.GA38782@atrbg11.informatik.tu-muenchen.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit
cc: freebsd-net@freebsd.org
Subject: Re: IPfilter changes?
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Apr 2003 09:00:40 -0000

Hi Daniel,

Daniel Lang wrote:
> Hi folks,
> 
> I've noticed some change of behaviour with IPFilter
> in my 4.8-RC2 system after the upgrade. It seems that
> a more recent version of ipfilter was imported then,
> so maybe something may have changed indeed. 

What version is used in 4.8-RC2? I'm using 4.8-RELEASE with IPFilter 
3.4.31 and it works with UDP and keep state quite fine.

> 
> Maybe it was never intended to work for UDP? Or maybe the state
> timings have changed? 

Yes, it is intended to have UDP and keep state, it is a nice feature of 
IP Filter!

Gruß
Martin

-- 
Martin Stiemerling

NEC Europe Ltd. -- Network Laboratories  Stiemerling@ccrle.nec.de
IPv4: http://www.ccrle.nec.de  IPv6: http://www.ipv6.ccrle.nec.de