From owner-freebsd-pf@FreeBSD.ORG Thu Apr 4 14:40:22 2013 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id A7AC5E58 for ; Thu, 4 Apr 2013 14:40:22 +0000 (UTC) (envelope-from cs@innolan.dk) Received: from serv.innomanslan.tf (0126800067.1.fullrate.dk [95.166.204.165]) by mx1.freebsd.org (Postfix) with ESMTP id 20C00733 for ; Thu, 4 Apr 2013 14:40:21 +0000 (UTC) Received: from [192.168.44.228] (192.168.44.228) by serv.innomanslan.tf (Axigen) with ESMTP id 097D19; Thu, 4 Apr 2013 16:35:09 +0200 Message-ID: <515D8F9D.3080001@innolan.dk> Date: Thu, 04 Apr 2013 16:35:09 +0200 From: Carsten Sonne Larsen User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:17.0) Gecko/20130324 Thunderbird/17.0.4 MIME-Version: 1.0 To: freebsd-pf@freebsd.org Subject: Filtering bridge with pf. Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.14 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Apr 2013 14:40:22 -0000 Hello guy, I am using pf to implement a filtering bridge but Im experinces some strange behaviour from pf. While using tcpdump I get entries like this: 16:25:45.998253 rule 2..16777216/0(match): block in on rl0: 192.168.0.1.32768 > 239.255.255.250.1900: UDP, length 339 I am using the keyword *quick* and would expect a certain rule match instead of rule 2..16777216 Also using pftop for some reason states does not expire while looking in the rules view. Could this be due a miscompiled kernel or maybe simply a faulty configuration ? Im using 9.1 on a AMD Geode CPU. Thanks in advance. Carsten Sonne Larsen