From owner-freebsd-pf@FreeBSD.ORG  Fri Aug 24 08:50:13 2007
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D267C16A477
	for <freebsd-pf@hub.freebsd.org>; Fri, 24 Aug 2007 08:50:13 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id B071C13C468
	for <freebsd-pf@hub.freebsd.org>; Fri, 24 Aug 2007 08:50:13 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.1/8.14.1) with ESMTP id l7O8oDXT062637
	for <freebsd-pf@freefall.freebsd.org>; Fri, 24 Aug 2007 08:50:13 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.1/8.14.1/Submit) id l7O8oDYW062636;
	Fri, 24 Aug 2007 08:50:13 GMT (envelope-from gnats)
Date: Fri, 24 Aug 2007 08:50:13 GMT
Message-Id: <200708240850.l7O8oDYW062636@freefall.freebsd.org>
To: freebsd-pf@FreeBSD.org
From: Daniel Hartmeier <daniel@benzedrine.cx>
Cc: 
Subject: Re: kern/110698: nat rule of pf without "on" clause causes invalid
	packed chksum
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Daniel Hartmeier <daniel@benzedrine.cx>
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Aug 2007 08:50:13 -0000

The following reply was made to PR kern/110698; it has been noted by GNATS.

From: Daniel Hartmeier <daniel@benzedrine.cx>
To: "Vladimir V. Kalashnikov" <hw@ksue.edu.ua>
Cc: FreeBSD-gnats-submit@freebsd.org
Subject: Re: kern/110698: nat rule of pf without "on" clause causes invalid packed chksum
Date: Fri, 24 Aug 2007 10:45:44 +0200

 On Fri, Mar 23, 2007 at 10:13:48AM +0200, Vladimir V. Kalashnikov wrote:
 
 > ###### S, cksum 0xee62 (incorrect (-> 0xfcc5), 3464239052:3464239052(0)
 > ###### here the effect ^^^^^^^^^^^^^^^^^^^^^^^
 
 Can you make sure that packets with invalid checksums really go out on
 the wire, by tcpdumping from another host on the network?
 
 When tcpdumping on the endpoint, it's possible to see misleading
 'incorrect' checksums due to hardware checksumming, i.e. the checksums
 get correctly set by the NIC and the packets on the wire have correct
 checksums.
 
 Daniel