From owner-freebsd-pf@FreeBSD.ORG Wed Nov 23 17:58:29 2005 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6CC1016A421 for ; Wed, 23 Nov 2005 17:58:29 +0000 (GMT) (envelope-from dhartmei@insomnia.benzedrine.cx) Received: from insomnia.benzedrine.cx (insomnia.benzedrine.cx [62.65.145.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4F60D43D64 for ; Wed, 23 Nov 2005 17:58:21 +0000 (GMT) (envelope-from dhartmei@insomnia.benzedrine.cx) Received: from insomnia.benzedrine.cx (dhartmei@localhost [127.0.0.1]) by insomnia.benzedrine.cx (8.13.4/8.12.11) with ESMTP id jANHwMCq021770 (version=TLSv1/SSLv3 cipher=DHE-DSS-AES256-SHA bits=256 verify=NO); Wed, 23 Nov 2005 18:58:22 +0100 (MET) Received: (from dhartmei@localhost) by insomnia.benzedrine.cx (8.13.4/8.12.10/Submit) id jANHwL0Z003324; Wed, 23 Nov 2005 18:58:22 +0100 (MET) Date: Wed, 23 Nov 2005 18:58:21 +0100 From: Daniel Hartmeier To: Alex Message-ID: <20051123175821.GA16492@insomnia.benzedrine.cx> References: <1132753339.649.48.camel@diablo> <200511231456.03507.max@love2party.net> <1132756278.649.56.camel@diablo> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1132756278.649.56.camel@diablo> User-Agent: Mutt/1.5.10i Cc: freebsd-pf@freebsd.org Subject: Re: pf synproxy in 6.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Nov 2005 17:58:29 -0000 On Wed, Nov 23, 2005 at 05:31:18PM +0300, Alex wrote: > What's to be added to take synproxy into working state? Try adding 'set skip on lo0'. Filtering on loopback is weird and has surprising side-effects with synproxy. Daniel