From owner-freebsd-stable@FreeBSD.ORG  Thu Jul 12 12:55:49 2007
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 90A2616A400
	for <freebsd-stable@freebsd.org>; Thu, 12 Jul 2007 12:55:49 +0000 (UTC)
	(envelope-from Stephen.Clark@seclark.us)
Received: from smtpauth04.prod.mesa1.secureserver.net
	(smtpauth04.prod.mesa1.secureserver.net [64.202.165.95])
	by mx1.freebsd.org (Postfix) with SMTP id 44F6513C46A
	for <freebsd-stable@freebsd.org>; Thu, 12 Jul 2007 12:55:49 +0000 (UTC)
	(envelope-from Stephen.Clark@seclark.us)
Received: (qmail 22577 invoked from network); 12 Jul 2007 12:55:46 -0000
Received: from unknown (24.144.77.243)
	by smtpauth04.prod.mesa1.secureserver.net (64.202.165.95) with ESMTP;
	12 Jul 2007 12:55:46 -0000
Message-ID: <469624D1.20108@seclark.us>
Date: Thu, 12 Jul 2007 08:55:45 -0400
From: Stephen Clark <Stephen.Clark@seclark.us>
User-Agent: Mozilla/5.0 (X11; U; Linux 2.2.16-22smp i686; en-US;
	m18) Gecko/20010110 Netscape6/6.5
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-stable@freebsd.org
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Subject: pmtud + ipnat RELENG_6_2 appears to be broken
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Stephen.Clark@seclark.us
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Jul 2007 12:55:49 -0000

Hi List,

When using ipnat, part of ipfilter 4.1.13, I don't see any
icmp packets being returned saying:
Host Unreachable, frag needed and DF set.
type 3, code 4

It does work if I am not using ipnat.

Any ideas?

Thanks,
Steve

-- 

"They that give up essential liberty to obtain temporary safety, 
deserve neither liberty nor safety."  (Ben Franklin)

"The course of history shows that as a government grows, liberty 
decreases."  (Thomas Jefferson)