From owner-freebsd-ipfw@FreeBSD.ORG  Sat Feb 15 03:34:27 2014
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 7A01761D
 for <freebsd-ipfw@freebsd.org>; Sat, 15 Feb 2014 03:34:27 +0000 (UTC)
Received: from msgw001-03.ocn.ad.jp (msgw001-03.ocn.ad.jp [180.37.203.72])
 by mx1.freebsd.org (Postfix) with ESMTP id 45A3216A7
 for <freebsd-ipfw@freebsd.org>; Sat, 15 Feb 2014 03:34:26 +0000 (UTC)
Received: from localhost (p6190-ipngn100104sizuokaden.shizuoka.ocn.ne.jp
 [153.185.224.190])
 by msgw001-03.ocn.ad.jp (Postfix) with ESMTP id 05C69AE2930;
 Sat, 15 Feb 2014 12:34:26 +0900 (JST)
Date: Sat, 15 Feb 2014 12:34:24 +0900 (JST)
Message-Id: <20140215.123424.159647737.toshi@ruby.ocn.ne.jp>
To: freebsd-ipfw@freebsd.org
Subject: something is wrong after 9.2 to 10.0
From: SAITOU Toshihide <toshi@ruby.ocn.ne.jp>
Received-SPF: pass (mf-ofc-ucb041: domain designate client-ip as permitted
 sender) client-ip=180.37.203.70; envelope-from=<toshi@ruby.ocn.ne.jp>;
 helo=msgw001-01.ocn.ad.jp;
X-GPG-fingerprint: 34B3 0B6A 8520 F5B0 EBC7  69F6 C055 9F8A 0D49 F8FC
X-Mailer: Mew version 6.2.51 on Emacs 22.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw/>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
 <mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Feb 2014 03:34:27 -0000

I'm using FreeBSD as desktop and also using as nat gateway.
After update from 9.2 to 10.0, some network problem occurs
on this desktop machine's environment.

  - Sometimes email transmission failed with
    `stat=Deferred: 452', maybe when the size is large.

  - Firefox failed to post a form of web page on https.

  - Cadaver is no longer able to put file.

But if I delete the following rule, the problem don't occur.

  00050 352686 304039811 nat 123 ip4 from any to any via alc0

And the related rc.conf entry is here:

    firewall_enable="YES"
    firewall_type="open"
    firewall_quiet="NO"
    firewall_logging="YES"
    firewall_nat_enable="YES"
    firewall_nat_interface="alc0"

Is there any clue?

--
SAITOU Toshihide