From owner-freebsd-pf@FreeBSD.ORG  Thu Sep 16 03:48:10 2004
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: by hub.freebsd.org (Postfix, from userid 674)
	id F01A716A4CF; Thu, 16 Sep 2004 03:48:10 +0000 (GMT)
Delivered-To: mlaier@vampire.homelinux.org
Received: (qmail 23372 invoked by uid 1005); 29 Aug 2003 07:09:19 -0000
Delivered-To: max@vampire.homelinux.org
Received: (qmail 23369 invoked from network); 29 Aug 2003 07:09:19 -0000
Received: from moutng.kundenserver.de (212.227.126.184)
  by pd9e39106.dip.t-dialin.net with SMTP; 29 Aug 2003 07:09:19 -0000
Received: from [212.227.126.211] (helo=mxng15.kundenserver.de)
	by moutng.kundenserver.de with esmtp (Exim 3.35 #1)
	id 19seGs-00076Q-00
	for max@vampire.homelinux.org; Fri, 29 Aug 2003 10:06:14 +0200
Received: from [206.53.239.180] (helo=turing.freelists.org)
	by mxng15.kundenserver.de with esmtp (Exim 3.35 #1)
	id 19seGl-0005U6-00
	for max@love2party.net; Fri, 29 Aug 2003 10:06:07 +0200
Received: from turing (localhost [127.0.0.1])ESMTP
	id DA699390689; Fri, 29 Aug 2003 03:06:32 -0500 (EST)
Received: with ECARTIS (v1.0.0; list pf4freebsd);
	Fri, 29 Aug 2003 03:05:50 -0500 (EST)
Delivered-To: pf4freebsd@freelists.org
Received: from ns.kt-is.co.kr (unknown [211.218.149.125])
	ESMTP id 0F9DD390815
	for <pf4freebsd@freelists.org>; Fri, 29 Aug 2003 03:05:47 -0500 (EST)
Received: from michelle.kt-is.co.kr (ns2.kt-is.co.kr [220.76.118.193])
	(authenticated bits=128)
	by ns.kt-is.co.kr (8.12.9/8.12.5) with ESMTP id h7T84jqb008034
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL)
	for <pf4freebsd@freelists.org>; Fri, 29 Aug 2003 17:04:45 +0900 (KST)
Received: from michelle.kt-is.co.kr (localhost.kt-is.co.kr [127.0.0.1])
	by michelle.kt-is.co.kr (8.12.9/8.12.9) with ESMTP id h7T84fM3013442
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <pf4freebsd@freelists.org>; Fri, 29 Aug 2003 17:04:41 +0900 (KST)
	(envelope-from yongari@kt-is.co.kr)
Received: (from yongari@localhost)
	by michelle.kt-is.co.kr (8.12.9/8.12.9/Submit) id h7T84euZ013441
	for pf4freebsd@freelists.org; Fri, 29 Aug 2003 17:04:40 +0900 (KST)
	(envelope-from yongari@kt-is.co.kr)
From: Pyun YongHyeon <yongari@kt-is.co.kr>
To: pf4freebsd@freelists.org
Message-ID: <20030829080440.GB12809@kt-is.co.kr>
References: <200308262103.12394.alan@precisionautobody.com>
	<200308262247.46254.alan@precisionautobody.com>
	<01a901c36cee$09bd6810$01000001@max900>
	<200308271625.05235.alan@precisionautobody.com>
	<025801c36cfa$3e756290$01000001@max900>
	<1062074062.31217.14.camel@quark.avioc.org>
	<20030829032218.GB11397@kt-is.co.kr>
Mime-Version: 1.0
Content-type: text/plain;
  charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20030829032218.GB11397@kt-is.co.kr>
User-Agent: Mutt/1.4.1i
X-Filter-Version: 1.11a (ns.kt-is.co.kr)
Content-Transfer-Encoding: 8bit
X-archive-position: 120
X-ecartis-version: Ecartis v1.0.0
Sender: pf4freebsd-bounce@freelists.org
Errors-To: pf4freebsd-bounce@freelists.org
X-original-sender: yongari@kt-is.co.kr
Precedence: normal
X-list: pf4freebsd
X-UID: 233
X-Length: 4549
X-Mailman-Approved-At: Thu, 16 Sep 2004 03:55:51 +0000
Subject: [pf4freebsd] Re: Bridging?
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.1
Reply-To: pf4freebsd@freelists.org
List-Id: Technical discussion and general questions about packet filter (pf)
	<freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
Date: Thu, 16 Sep 2004 03:48:11 -0000
X-Original-Date: Fri, 29 Aug 2003 17:04:40 +0900
X-List-Received-Date: Thu, 16 Sep 2004 03:48:11 -0000

On Fri, Aug 29, 2003 at 12:22:18PM +0900, To pf4freebsd@freelists.org wrote:
 > On Thu, Aug 28, 2003 at 08:15:45AM -0500, Brandon Weisz wrote:
 >  > Max,
 >  > I tested your patch with basically the same setup as Alan.  I'm using
 >  > the pf port, not sure if I should be testing with 1.62.
 >  > 
 > If your system is -current you should use latest version
 > (not in ports tree).
 > 
 >  > The quick and dirty is I didn't see any of the debug messages from
 >  > bridge.c.diff in the dmesg.
 >  > 
 > The debugging message may show up on your CONSOLE. If you do not
 > see any messages such as 'START, TRUE, calling' on your console,
 > it means pf does not work on bridge setup. However I don't think
 > so because bridge code supports PFIL_HOOKS and ipfilter also
 > relys on this feature.(But I can't sure 'cause I don't even use
 > bridge at all.)
 > 
I have tried bridge(4) with kernel module on -current. No luck.
I can't believe this so I have tried ipf. It did not work too.
There must be a bug in bridge(4) code itself.
At present it seems that there is no way to use pf or ipf
(which uses PFIL_HOOK) on bridge setup with/without assigning
a IP address.
Is there anyone using ipf on bridge setup?

Regards,
Pyun YongHyeon
-- 
Pyun YongHyeon <http://www.kr.freebsd.org/~yongari>
KTIS, Inc. +82-2-597-0600