From owner-freebsd-stable@FreeBSD.ORG  Fri Nov  5 18:12:22 2004
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EE7C116A4CE
	for <stable@freebsd.org>; Fri,  5 Nov 2004 18:12:22 +0000 (GMT)
Received: from haanjdj.demon.nl (haanjdj.demon.nl [82.161.5.221])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 910DE43D2D
	for <stable@freebsd.org>; Fri,  5 Nov 2004 18:12:22 +0000 (GMT)
	(envelope-from derkjan@haanjdj.demon.nl)
Received: from localhost (localhost [127.0.0.1])
	by haanjdj.demon.nl (Postfix) with ESMTP id 1F0222C00B;
	Fri,  5 Nov 2004 19:12:21 +0100 (CET)
Received: from haanjdj.demon.nl ([127.0.0.1])
 by localhost (haanjdj.demon.nl [127.0.0.1]) (amavisd-new, port 10024)
 with LMTP id 00283-07; Fri,  5 Nov 2004 19:12:19 +0100 (CET)
Received: from bogomip (bogomip.badmuts.org [192.168.2.1])
	by haanjdj.demon.nl (Postfix) with SMTP id 4ECB42C006;
	Fri,  5 Nov 2004 19:12:15 +0100 (CET)
Message-ID: <002c01c4c362$fe7f3f60$0102a8c0@bogomip>
From: "Derkjan de Haan" <derkjan@haanjdj.demon.nl>
To: "Dimitry Andric" <dimitry@andric.com>,
	"zen" <zen@tk-pttuntex.com>
References: <183710602071.20041105082934@tk-pttuntex.com>
	<1277801790.20041105085722@andric.com>
Date: Fri, 5 Nov 2004 19:12:17 +0100
MIME-Version: 1.0
Content-Type: text/plain;
	format=flowed;
	charset="iso-8859-1";
	reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
X-Virus-Scanned: by amavisd-new at haanjdj.demon.nl
cc: stable@freebsd.org
Subject: Re: ipf
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Nov 2004 18:12:23 -0000


> There's your problem: your userland is out of sync with your kernel.
> Just rebuild your system (i.e. kernel AND userland) to get rid of the
> problem.

I don't think that's the case here. I'm using a recent 4-stable and I'm 
seeing the same:

ipf: IP Filter: v3.4.31 (336)
Kernel: IP Filter: v3.4.35
Running: yes
Log Flags: 0 = none set
Default: block all, Logging: available
Active list: 0

Kernel and userland have been rebuilded and are in sync. Maybe this also 
explains a few issues I'm having with ipfilter (more specifically: the 
system not accepting incoming connections when using the 0/0 -> 0/32 syntax 
with ipnat).


regards,

Derkjan