From owner-freebsd-questions@FreeBSD.ORG Sat Jul 21 13:08:32 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EE10216A5A3 for ; Sat, 21 Jul 2007 13:08:32 +0000 (UTC) (envelope-from fbsd06@mlists.homeunix.com) Received: from mxout-03.mxes.net (mxout-03.mxes.net [216.86.168.178]) by mx1.freebsd.org (Postfix) with ESMTP id C3C6913C474 for ; Sat, 21 Jul 2007 13:08:32 +0000 (UTC) (envelope-from fbsd06@mlists.homeunix.com) Received: from gumby.homeunix.com. (unknown [87.81.140.128]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.mxes.net (Postfix) with ESMTP id 633115191A for ; Sat, 21 Jul 2007 09:08:31 -0400 (EDT) Date: Sat, 21 Jul 2007 14:08:28 +0100 From: RW To: freebsd-questions@freebsd.org Message-ID: <20070721140828.7ea15436@gumby.homeunix.com.> In-Reply-To: <200707211229.l6LCTqiL001484@ns2.sixcompanies.com> References: <200702252202.l1PM2r46003312@cheyenne.sixcompanies.com> <720051dc0702260052v8e4d2b2v9bbca164bfe87a4b@mail.gmail.com> <720051dc0702260052v8e4d2b2v9bbca164bfe87a4b@mail.gmail.com> <200702261159.l1QBx46X006755@cheyenne.sixcompanies.com> <46A1EA91.5000306@dir.bg> <200707211229.l6LCTqiL001484@ns2.sixcompanies.com> X-Mailer: Claws Mail 2.9.2 (GTK+ 2.10.14; i386-portbld-freebsd6.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: Re: pf and keep/modulate state on 6.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 21 Jul 2007 13:08:33 -0000 On Sat, 21 Jul 2007 07:29:53 -0500 JD Bronson wrote: > thanks for the update on this. I had forgot about it since I just > stopped using modulate state (is it really needed anymore?). > > Then, the beginning of this month I moved my firewall/router back > over to OpenBSD 4.1 to stay more current with pf instead of running > -CURRENT within FreebSD. > > This fix really should be incorporated into 6.2-STABLE or even > 6.2-STANDARD I think. I wonder how many people use this and don't > even know its messed up? I think it depends what percentage of people see connections actually petering-out to nothing, like I did, rather that just slowing down. What I'm wondering is how many more serious bugs have been fixed in OpenBSD, but not ported. As well as modulate state, I also stopped using hfsc because ping-times sometimes just seem to jump-up to several seconds and stay there.