From owner-freebsd-pf@FreeBSD.ORG  Sat Dec 29 11:56:57 2012
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
 by hub.freebsd.org (Postfix) with ESMTP id E4727618
 for <freebsd-pf@freebsd.org>; Sat, 29 Dec 2012 11:56:57 +0000 (UTC)
 (envelope-from Mark.Martinec+freebsd@ijs.si)
Received: from mail.ijs.si (mail.ijs.si [IPv6:2001:1470:ff80::25])
 by mx1.freebsd.org (Postfix) with ESMTP id 5A0FC8FC0C
 for <freebsd-pf@freebsd.org>; Sat, 29 Dec 2012 11:56:57 +0000 (UTC)
Received: from amavis-proxy-ori.ijs.si (localhost [IPv6:::1])
 by mail.ijs.si (Postfix) with ESMTP id 3YYNYg3L2szGN47
 for <freebsd-pf@freebsd.org>; Sat, 29 Dec 2012 12:56:55 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ijs.si; h=
 message-id:content-transfer-encoding:content-type:content-type
 :mime-version:organization:in-reply-to:references:user-agent
 :date:date:subject:subject:from:from:received:received:received
 :vbr-info; s=jakla2; t=1356782213; x=1359374214; bh=haqhC3pMC6xC
 kAIxy6StQ8aIEpi6icm8RIoRfUXxtEo=; b=htMOmjwZu0IcrZQG6cHUyGupxcQ+
 KTN06386EkqyJJehF+nIbmZOyKDV/XeSJfN78osFEaEqwE+1Z57Eo6Fb+7+17QLR
 2x5xthRDt9SmWIotTZ8YT0Jah8+WXcAFmlE7ZB24D70P6Goq4Ut9rXhuLG4p+GT9
 Lvu+/NIXm87+BGc=
VBR-Info: md=ijs.si; mc=all; mv=dwl.spamhaus.org;
X-Virus-Scanned: amavisd-new at ijs.si
Received: from mail.ijs.si ([IPv6:::1])
 by amavis-proxy-ori.ijs.si (mail.ijs.si [IPv6:::1]) (amavisd-new, port 10012)
 with ESMTP id 78j61hGcKocH for <freebsd-pf@freebsd.org>;
 Sat, 29 Dec 2012 12:56:53 +0100 (CET)
Received: from mildred.ijs.si (mailbox.ijs.si [IPv6:2001:1470:ff80::143:1])
 by mail.ijs.si (Postfix) with ESMTP
 for <freebsd-pf@freebsd.org>; Sat, 29 Dec 2012 12:56:52 +0100 (CET)
Received: from sleepy.ijs.si (sleepy.ijs.si [IPv6:2001:1470:ff80:e001::1:1])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by mildred.ijs.si (Postfix) with ESMTPSA id CD6B560C
 for <freebsd-pf@freebsd.org>; Sat, 29 Dec 2012 12:56:52 +0100 (CET)
From: Mark Martinec <Mark.Martinec+freebsd@ijs.si>
To: freebsd-pf@freebsd.org
Subject: Re: nc: connect to b:b:b:b::1:1 port 53 (tcp) failed: Operation timed
 out
Date: Sat, 29 Dec 2012 12:56:52 +0100
User-Agent: KMail/1.13.7 (FreeBSD/9.1-PRERELEASE; KDE/4.8.4; amd64; ; )
References: <14C709A3-B608-44C3-B12F-5F6790AA60DC@odo.in-berlin.de>
 <031FA6BE-B5A9-4197-ABAC-8883D48FA8FC@odo.in-berlin.de>
In-Reply-To: <031FA6BE-B5A9-4197-ABAC-8883D48FA8FC@odo.in-berlin.de>
Organization: J. Stefan Institute
MIME-Version: 1.0
Content-Type: Text/Plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <201212291256.52378.Mark.Martinec+freebsd@ijs.si>
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
 \(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
 <mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Dec 2012 11:56:58 -0000

On Saturday December 29 2012 10:48:41 Michael Grimm wrote:
> - Disabling PF at 9.1 allows outgoing tcp6 to 9.1 with enabled PF.
> 
> Thus, it seems to me that the pf code in 9.1 is responsible for screwing
> tcp6.

Make sure to have 'scrub reassemble tcp' off:

misc/172648:
pf(4): 'scrub reassemble tcp' breaks IPv6 packet checksum on SYN ACK
http://www.freebsd.org/cgi/query-pr.cgi?pr=172648

  Mark