Date: Fri, 30 Sep 2005 09:40:11 GMT From: Vladimir Kotal <vlada@devnull.cz> To: freebsd-gnats-submit@FreeBSD.org Subject: kern/86752: pf does not use default timeouts when reloading config file Message-ID: <200509300940.j8U9eBM1034667@www.freebsd.org> Resent-Message-ID: <200509300940.j8U9eFXm012430@freefall.freebsd.org>
index | next in thread | raw e-mail
>Number: 86752
>Category: kern
>Synopsis: pf does not use default timeouts when reloading config file
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Fri Sep 30 09:40:15 GMT 2005
>Closed-Date:
>Last-Modified:
>Originator: Vladimir Kotal
>Release: 5.4-RELEASE-p7
>Organization:
>Environment:
FreeBSD XXX 5.4-RELEASE-p7 FreeBSD 5.4-RELEASE-p7 #1: Thu Sep 22 11:01:10 CEST 2005 XXX:/usr/src/sys/i386/compile/XXX i386
>Description:
after setting custom timeout values in pf.conf and reloading the config and then commenting out/deleting the lines with timeout settings, the setting remain set.
>How-To-Repeat:
1. set timeout value. e.g. by using following pf.conf line:
set timeout tcp.closed 60
2. display timeout setting via 'pfctl -s timeout | grep tcp.closed'
3. reload pf configuration via 'pfctl -f /etc/pf.conf'
4. remove or comment out the line set in step 1
5. reload pf configuration
6. display tcp.closed timeout (as in step 2)
expected behavior:
after step 6, tcp.closed timeout should be set to default value
(as seen in step 2)
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200509300940.j8U9eBM1034667>