From owner-svn-src-head@FreeBSD.ORG Mon Dec 7 20:11:53 2009 Return-Path: Delivered-To: svn-src-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 308E61065676; Mon, 7 Dec 2009 20:11:53 +0000 (UTC) (envelope-from lytboris@gmail.com) Received: from mail-fx0-f209.google.com (mail-fx0-f209.google.com [209.85.220.209]) by mx1.freebsd.org (Postfix) with ESMTP id 77C9A8FC12; Mon, 7 Dec 2009 20:11:51 +0000 (UTC) Received: by fxm2 with SMTP id 2so2387229fxm.13 for ; Mon, 07 Dec 2009 12:11:50 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=tQbFyu7qaprnsDlmCNTqjOu9MU1yftFtmRn9FL0ifM4=; b=ANGt7Se9zyMm9ZITJCUjrPouniMW2FokoyWjMp8Nxj8k15vVzE0QAgy6t73lpdKcn0 TtapSZFdsL5pDeRZDPSKYp/coKiiNeq7TLrYUf/jvTqHHPZjfG6ebNmKqf0GFiYVOZI+ QXylOHYBixhia3SULNNpewfodWniP7cnjWtRc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=sfVYKLnjHvHx7KSi8GE4UnzFcQtWIlnOZo61JcNy2EMabRofApID41uot2VN53ZBrB elDgsAiSSqKpEG717w2N4Tg27mS8HjXjO6FrITobvlbHn0ZqpAPutv2262oJ+NL1aAyj N5FPtqRuwFqgyWE4/bt2XjjDWq9C9Ukpsv/Bw= MIME-Version: 1.0 Received: by 10.239.141.131 with SMTP id c3mr832592hba.44.1260215143294; Mon, 07 Dec 2009 11:45:43 -0800 (PST) In-Reply-To: <200912072029.05907.max@love2party.net> References: <200912061804.nB6I4R38027652@svn.freebsd.org> <4B1D437F.4050601@elischer.org> <4B1D4723.5090908@elischer.org> <200912072029.05907.max@love2party.net> Date: Mon, 7 Dec 2009 22:45:43 +0300 Message-ID: <933fa9790912071145k4d97c177qc6f963ba0ffbb13@mail.gmail.com> From: Lytochkin Boris To: Max Laier Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Luigi Rizzo , src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org, Julian Elischer , sem@freebsd.org, =?ISO-8859-1?Q?Ermal_Lu=E7i?= Subject: Re: svn commit: r200183 - head/sbin/ipfw X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 07 Dec 2009 20:11:53 -0000 Hi! On Mon, Dec 7, 2009 at 10:29 PM, Max Laier wrote: [cut] > I just tested an install of r197983 (9.0-CURRENT) that I had on a test-bo= x and > route-to works as it is supposed to - AFAICT. =A0FWIW, pf sets sin_len fo= r every > use. > > Might be a problem/mis-understanding in the OPs configuration that is the > issue here? > > I'll follow up to the thread on -net@ is a second. I posted my pf config in original message to -net@: =3D=3D=3D=3D=3D scrub in all fragment reassemble pass in all flags S/SA keep state pass out quick route-to (em0 10.60.128.254) inet from 10.60.128.0/24 to any flags S/SA keep state =3D=3D=3D=3D=3D Pretty simple. Even when forward is disabled packets that are matched by route-to rule are forwarded to default gateway instead of specified in route-to. And I checked rtalloc_ign_fib() arguments when using pf - seems that pf does not use this function to lookup route-to route. +sem@ --=20 Regards, Boris Lytochkin