Date: Sat, 04 Jun 2022 07:29:16 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 264193] pf: scrub max-mss rule stops working (but still counts) after 13.1-RELEASE upgrade Message-ID: <bug-264193-7501-sbG3LGtg44@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-264193-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-264193-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D264193 --- Comment #2 from oleg@mamontov.net --- Hello. My test case looks more complicated, sorry about this. I reproduce it in bh= yve vms freshly installed from FreeBSD-13.0-RELEASE-amd64-disc1.iso and FreeBSD-13.1-RELEASE-amd64-disc1.iso without any setup customizations. Below is the preparations (the same for 13.0 and 13.1): -------- # kldload pf # touch /etc/pf.conf # cat /tmp/pf.conf scrub on epair1b proto tcp max-mss 1380 pass out route-to (epair1b 10.0.1.1) proto tcp to port 25 # cat /etc/jail.conf mss { path =3D /; persist; vnet new; vnet.interface =3D epair0b; vnet.interface +=3D epair1b; exec.prestart =3D "ifconfig epair0 create"; exec.prestart +=3D "ifconfig epair0a inet 10.0.0.1/24"; exec.prestart +=3D "ifconfig epair1 create"; exec.prestart +=3D "ifconfig epair1a inet 10.0.1.1/24"; exec.start =3D "ifconfig epair0b inet 10.0.0.2/24"; exec.start +=3D "ifconfig epair1b inet 10.0.1.2/24"; exec.start +=3D "route add default 10.0.0.1"; exec.start +=3D "service pf onestart"; exec.start +=3D "pfctl -f /tmp/pf.conf"; exec.poststop =3D "ifconfig epair0a destroy"; exec.poststop +=3D "ifconfig epair1a destroy"; } # service jail onestart mss Starting jails: mss. -------- Now testing on 13.0-RELEASE: -------- # jexec mss telnet -N 1.2.3.4 25 Trying 1.2.3.4... # tcpdump -ni epair1a 10:18:27.724252 IP 10.0.0.2.43516 > 1.2.3.4.25: Flags [S], seq 1151646480, = win 65535, options [mss 1380,nop,wscale 6,sackOK,TS val 518156570 ecr 0], lengt= h 0 ---------------------------- The same on 13.1-RELEASE: -------------------------- # jexec mss telnet -N 1.2.3.4 25 Trying 1.2.3.4... # tcpdump -ni epair1a 10:24:27.627525 IP 10.0.0.2.42802 > 1.2.3.4.25: Flags [S], seq 2537751742, = win 65535, options [mss 1460,nop,wscale 6,sackOK,TS val 185378837 ecr 0], lengt= h 0 ---------------------------- I believe you can see the difference (mss 1380 vs 1460). Thank you. --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-264193-7501-sbG3LGtg44>