Date: Tue, 22 Jan 2019 22:56:15 +0000 From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 229092] [pf] [pfsync] States created by route-to rules pfsynced without interface Message-ID: <bug-229092-16861-t6AdmrleZQ@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-229092-16861@https.bugs.freebsd.org/bugzilla/> References: <bug-229092-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D229092 Kajetan Staszkiewicz <vegeta@tuxpowered.net> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #194342|0 |1 is obsolete| | CC| |vegeta@tuxpowered.net --- Comment #11 from Kajetan Staszkiewicz <vegeta@tuxpowered.net> --- Created attachment 201346 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D201346&action= =3Dedit Reconstruct interface route by standard fib lookup I found another issue. Even if we can somehow reconstruct route interface, there is still a requirement for having identical ruleset on both routers because it is rule->rt which makes Route-to, Duplicate-to and Reply-to targ= ets work. This information is never kept in state. Attached patch solves this issue by copying rule->rt to state->rt (new fiel= d). Pfsync struct got this field too. Route interface is reconstructed by normal lookup in routing table in fib 0. Warning: for "no state" rules stil rule->rt must be used and I have coded it but not tested. For stateful ruleset all seems fine for route-to target. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-229092-16861-t6AdmrleZQ>