From owner-freebsd-net@FreeBSD.ORG Thu Apr 24 21:17:46 2014 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 7506B6FE for ; Thu, 24 Apr 2014 21:17:46 +0000 (UTC) Received: from mp1-smtp-6.eutelia.it (mp1-smtp-6.eutelia.it [62.94.10.166]) by mx1.freebsd.org (Postfix) with ESMTP id 2774A10EC for ; Thu, 24 Apr 2014 21:17:46 +0000 (UTC) Received: from ns2.biolchim.it (ip-188-188.sn2.eutelia.it [83.211.188.188]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mp1-smtp-6.eutelia.it (Eutelia) with ESMTP id 793146B9343 for ; Thu, 24 Apr 2014 23:17:44 +0200 (CEST) Received: from soth.ventu (adsl-ull-163-141.41-151.net24.it [151.41.141.163]) (authenticated bits=0) by ns2.biolchim.it (8.14.8/8.14.8) with ESMTP id s3OLHcxe074935 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for ; Thu, 24 Apr 2014 23:17:41 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: ns2.biolchim.it: Host adsl-ull-163-141.41-151.net24.it [151.41.141.163] claimed to be soth.ventu Received: from alamar.ventu (alamar.ventu [10.1.2.18]) by soth.ventu (8.14.8/8.14.7) with ESMTP id s3OLHXbX022577 for ; Thu, 24 Apr 2014 23:17:33 +0200 (CEST) (envelope-from ml@netfence.it) Message-ID: <53597F6D.8090201@netfence.it> Date: Thu, 24 Apr 2014 23:17:33 +0200 From: Andrea Venturoli User-Agent: Mozilla/5.0 (X11; FreeBSD i386; rv:24.0) Gecko/20100101 Thunderbird/24.4.0 MIME-Version: 1.0 To: freebsd-net@freebsd.org Subject: Re: Network troubles after 8.3 -> 8.4 upgrade References: <53503BC3.6040806@netfence.it> <5352B005.8090405@netfence.it> In-Reply-To: <5352B005.8090405@netfence.it> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.4.3 (ns2.biolchim.it [192.168.2.203]); Thu, 24 Apr 2014 23:17:42 +0200 (CEST) X-Scanned-By: MIMEDefang 2.74 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 24 Apr 2014 21:17:46 -0000 On 04/19/14 19:19, Andrea Venturoli wrote: > Hmmm, sounds a bit complicated... would simply dropping if_em.ko in from > a 8.3 box work? Ok, I'll answer myself. I'm now running 8.3's if_em.ko (binary from another system), on an 8.4 kernel. The behaviour is the same as before. However, further researches show em is not the culprit. Rather, ipfw is: in fact dynamic rules are created, but will always timeout after 20 s (no matter if idle or not). Someway the outgoing packet triggers the dynamic rule, but it doesn't seem to get past the SYN phase. The ruleset here is quite a mess, so I need to investigate it better. What suprise me is that it worked differently with 8.3! Well, at least now I know where to look... Thanks to anyone who replied. bye av.