Date: Tue, 25 Mar 1997 13:32:55 -0800 (PST) From: spatula@gulf.net To: freebsd-gnats-submit@freebsd.org Subject: kern/3100: IPFW panics upon denying a packet Message-ID: <199703252132.NAA11008@freefall.freebsd.org> Resent-Message-ID: <199703252140.NAA11649@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 3100 >Category: kern >Synopsis: IPFW panics upon denying a packet >Confidential: no >Severity: non-critical >Priority: medium >Responsible: freebsd-bugs >State: open >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Tue Mar 25 13:40:03 PST 1997 >Last-Modified: >Originator: Nick Johnson >Organization: Gulf Coast Internet Company >Release: 2.2-RELEASE >Environment: FreeBSD blowfish.office.gulf.net 2.2-RELEASE FreeBSD 2.2-RELEASE #0: Tue Mar 18 10:43:58 CST 1997 root@blowfish.office.gulf.net:/usr/src/sys/compile/N2 i386 >Description: When machines configured with ipfw receive a packet that would be denied, the kernel panics. The problem also exists in 3.0 snap, but not in 2.1.x >How-To-Repeat: Compile ipfw support into the kernel and do something like this: ipfw -f flush ipfw add allow all from xxx.xxx.xxx.xxx to any ipfw deny icmp from any to xxx.xxx.xxx.xxx ping freebsd.org Upon receiving the returning icmp packet, the kernel will bomb. >Fix: unknown. A workaround is to not deny packets. >Audit-Trail: >Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703252132.NAA11008>