From owner-freebsd-bugs@FreeBSD.ORG Wed Dec 29 07:00:42 2004 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DBEBB16A4CF for ; Wed, 29 Dec 2004 07:00:42 +0000 (GMT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9F38443D5F for ; Wed, 29 Dec 2004 07:00:42 +0000 (GMT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) by freefall.freebsd.org (8.13.1/8.13.1) with ESMTP id iBT70gMl003221 for ; Wed, 29 Dec 2004 07:00:42 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.13.1/8.13.1/Submit) id iBT70g2P003214; Wed, 29 Dec 2004 07:00:42 GMT (envelope-from gnats) Resent-Date: Wed, 29 Dec 2004 07:00:42 GMT Resent-Message-Id: <200412290700.iBT70g2P003214@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Joe Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2BA8A16A4CE for ; Wed, 29 Dec 2004 07:00:09 +0000 (GMT) Received: from www.freebsd.org (www.freebsd.org [216.136.204.117]) by mx1.FreeBSD.org (Postfix) with ESMTP id 12F0843D55 for ; Wed, 29 Dec 2004 07:00:09 +0000 (GMT) (envelope-from nobody@FreeBSD.org) Received: from www.freebsd.org (localhost [127.0.0.1]) by www.freebsd.org (8.13.1/8.13.1) with ESMTP id iBT708NX018866 for ; Wed, 29 Dec 2004 07:00:08 GMT (envelope-from nobody@www.freebsd.org) Received: (from nobody@localhost) by www.freebsd.org (8.13.1/8.13.1/Submit) id iBT7081L018865; Wed, 29 Dec 2004 07:00:08 GMT (envelope-from nobody) Message-Id: <200412290700.iBT7081L018865@www.freebsd.org> Date: Wed, 29 Dec 2004 07:00:08 GMT From: Joe To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-2.3 Subject: misc/75601: ipfilter not allowing SSH to box on FreeBSD 5.3 X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 29 Dec 2004 07:00:43 -0000 >Number: 75601 >Category: misc >Synopsis: ipfilter not allowing SSH to box on FreeBSD 5.3 >Confidential: no >Severity: critical >Priority: high >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Wed Dec 29 07:00:42 GMT 2004 >Closed-Date: >Last-Modified: >Originator: Joe >Release: 5.3 >Organization: GTV >Environment: FreeBSD titanium.gaming-tv.com 5.3-RELEASE-p1 FreeBSD 5.3-RELEASE-p1 #1: Sun Dec 5 23:28:05 CST 2004 root@titanium.gaming-tv.com:/usr/obj/usr/src/sys/titanium i386 >Description: Ever since we upgraded out boxes from FreeBSD 5.2 to FreeBSD 5.3, we have trouble logging in to SSH. This only occurs when we have ipfilter on. We have port 22 opened for people to SSH to and from. If I type ipf -D and disable ipfilter, I can SSH into the box, yet as soon as its active, I can't get in. It does not stop with SSH either, if I try to access a web page from the box, I can not view it or it takes literally about an hour to load. Again, when I turn off ipfilter, the issue goes away, and when it is turned back on, the problem appears again. >How-To-Repeat: Just upgraded to 5.3, not sure how to recreate the problem. >Fix: None. >Release-Note: >Audit-Trail: >Unformatted: