Date: Sat, 27 Jan 2024 13:40:09 +0000 From: bugzilla-noreply@freebsd.org To: pf@FreeBSD.org Subject: [Bug 276619] pfsync not synching all states from system running 13.2 to system running 14.0 (pfsync0 set to version 1301) Message-ID: <bug-276619-16861-yNZmBYh2y2@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-276619-16861@https.bugs.freebsd.org/bugzilla/> References: <bug-276619-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D276619 --- Comment #4 from Lee Ziegenhals <lee@perftech.com> --- Created attachment 248002 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D248002&action= =3Dedit Packet capture of pfsync traffic Here is a packet capture of some of the pfsync traffic, captured from the Ethernet interface on the 14.0 side. The 13.2 system is 10.170.0.1 and the = 14.0 system is 10.170.0.2. Interestingly, this file decodes properly (albeit with some formatting issu= es) using tcpdump (version 4.9.3) on the 13.2 system, but does not decode using tcpdump (version 4.99.4) on the 14.0 side. Running tcpdump post-capture on the 13.2 system: # tcpdump -r fw2-igb0-1.pcap -nv | less reading from file fw2-igb0-1.pcap, link-type EN10MB (Ethernet) 07:17:25.158773 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pf= sync (240), length 1500) 10.170.0.1 > 10.170.0.2: PFSYNCv5 len 1480 insert count 6\0x0a all proto 58 2001:4870:610e:2:3::4a.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a=20= =20=20=20=20=20=20 all proto 58 2001:4870:610e:2:4::107.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 58 2001:4870:610e:2:4::55.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab= 1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 58 2001:4870:610e:2:4::232.13= <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 6 206.210.200.121.29212 <- 79.124.58.150.43286 CLOSED:SYN_SENT\0x0a= all proto 17 206.210.192.32.123 <- 34.235.242.82.55727 SINGLE:MULTIPLE eof count 1 07:17:25.158777 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pf= sync (240), length 1346) 10.170.0.1 > 10.170.0.2: PFSYNCv5 len 1326 insert count 5\0x0a all proto 58 2001:4870:610e:2:3::52.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a=20= =20=20=20=20=20=20 all proto 58 2001:4870:610e:2:4::231.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 58 2001:4870:610e:2:4::89.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab= 1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 58 2001:4870:610e:2:4::181.13= <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13 NO_TRAFFIC:NO_TRAFFIC\0x0a all proto 17 34.235.242.82.55727 -> 206.210.192.32.123 MULTIPLE:SINGLE update compressed count 1 id: 02000000b7eb7fee creatorid: 00000001 eof count 1 Running tcpdump on the same file on the 14.0 system: # tcpdump -r fw2-igb0-1.pcap -nv | less reading from file fw2-igb0-1.pcap, link-type EN10MB (Ethernet), snapshot le= ngth 262144 07:17:25.158773 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pf= sync (240), length 1500) 10.170.0.1 > 10.170.0.2: ip-proto-240 1480 07:17:25.158777 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pf= sync (240), length 1346) 10.170.0.1 > 10.170.0.2: ip-proto-240 1326 --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-276619-16861-yNZmBYh2y2>