From owner-freebsd-stable@freebsd.org  Wed Aug 19 15:03:12 2015
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2312E9BC71B
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Wed, 19 Aug 2015 15:03:12 +0000 (UTC)
 (envelope-from emz@norma.perm.ru)
Received: from elf.hq.norma.perm.ru (unknown [IPv6:2a00:7540:1::5])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "mail.norma.perm.ru",
 Issuer "Vivat-Trade UNIX Root CA" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 91D391314
 for <freebsd-stable@freebsd.org>; Wed, 19 Aug 2015 15:03:11 +0000 (UTC)
 (envelope-from emz@norma.perm.ru)
Received: from bsdrookie.norma.com. (perederenko.norma.com [IPv6:fd00::7dd]
 (may be forged))
 by elf.hq.norma.perm.ru (8.14.9/8.14.9) with ESMTP id t7JF33fG038427
 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO)
 for <freebsd-stable@freebsd.org>; Wed, 19 Aug 2015 20:03:04 +0500 (YEKT)
 (envelope-from emz@norma.perm.ru)
To: FreeBSD stable <freebsd-stable@freebsd.org>
From: "Eugene M. Zheganin" <emz@norma.perm.ru>
Subject: ipsec on recent STABLE
X-Enigmail-Draft-Status: N1110
Message-ID: <55D49AA6.8020907@norma.perm.ru>
Date: Wed, 19 Aug 2015 20:03:02 +0500
User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:38.0) Gecko/20100101
 Thunderbird/38.1.0
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 7bit
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3
 (elf.hq.norma.perm.ru [IPv6:fd00::30a]);
 Wed, 19 Aug 2015 20:03:04 +0500 (YEKT)
X-Spam-Status: No hits=-100.2 bayes=0.0001 testhits AWL=0.288,BAYES_00=-1.9,
 RDNS_NONE=0.793,SPF_SOFTFAIL=0.665,USER_IN_WHITELIST=-100 autolearn=no
 autolearn_force=no version=3.4.0
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on elf.hq.norma.perm.ru
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2015 15:03:12 -0000

Hi.

Recently I built an i386 nanobsd image from a recent STABLE, r285595M
(seems like some patch laso wasn't overwritten correctly in my tree),
and I cannot get it to work. In the same time same revision on amd64
works fine. Symptoms are - nanobsd sends traffic just fine, it's seen on
the remote end, remote end replies, these packets are seen as IPSEC on
the external interface, but the gre tunnel sees only the outgoing ones.
Since I was the author of the false alarm last time - I want to ask if
someone is getting this too, or if someone has an gre+ipsec working on a
more stable version, on i386.

Or may be this can be related to the last netstat errata ?

Thanks.
Eugene.