Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 14 Dec 2015 21:38:51 +0100
From:      murdoch.john@moumantai.de
To:        Kristof Provost <kp@FreeBSD.org>
Cc:        "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org>
Subject:   Re: Unable to upload to S3 when pf is activated
Message-ID:  <97FFE650-FFC8-4EB3-81EF-CF3B7A55B1F1@moumantai.de>
In-Reply-To: <8F94731D-E0B3-4B94-83B8-1928ECBC20B8@FreeBSD.org>
References:  <DFB96E94-2255-4CA2-B1B1-EA0B3230122C@moumantai.de> <8F94731D-E0B3-4B94-83B8-1928ECBC20B8@FreeBSD.org>

next in thread | previous in thread | raw e-mail | index | archive | help
Hi Kristof,

yes, the machine runs on Amazon and yes again -tso fixed the problem.

Could I have seen this somehow watching the pf log? Maybe package =
length?

Thanks you so much. I spent hours tracking this down.

Best,
JOERG



> On 14 Dec 2015, at 21:19, Kristof Provost <kp@FreeBSD.org> wrote:
>=20
>=20
>> On 14 Dec 2015, at 21:04, murdoch.john@moumantai.de wrote:
>> this might sound as a strange question, but when I activate the PF
>> firewall using a minimal rule set (see below), uploading files to
>> AWS S3 becomes impossible.
> ...
>> I am lost. Anyone any ideas.
>=20
> Am I right in assuming that the FreeBSD machine is also running on =
Amazon?
>=20
> There=E2=80=99s a know problem with pf and TSO which manifests (among =
other places) in EC2 instances.
> It=E2=80=99s actually been fixed in stable/10, so the 10.3 release =
will have the fix.
> In 10.2 you can work around the problem by disabling TSO (ifconfig =
foo0 -tso should do the trick).
>=20
> See PR 154428, 193579, 198868 for more information.
>=20
> Regards,
> Kristof
> _______________________________________________
> freebsd-pf@freebsd.org mailing list
> https://lists.freebsd.org/mailman/listinfo/freebsd-pf
> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?97FFE650-FFC8-4EB3-81EF-CF3B7A55B1F1>