Date: Tue, 27 Mar 2018 15:19:14 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 226850] [pf] Matching but failed rules block without return Message-ID: <bug-226850-17777-QnA8naiGzn@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-226850-17777@https.bugs.freebsd.org/bugzilla/> References: <bug-226850-17777@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=226850 --- Comment #10 from vegeta@tuxpowered.net --- Any rule can fail like this, not only route-to rules, so it is not specific to them. And I'm taking about responding with RST/ICMP to new connections when redirection table is already empty. Injecting RSTs during killing of existing connections I already have written and it is done using new sysctls, so I always assumed that it would be too much to include in upstream code. Let's not get into that in this bug report, I will be of course happy to share code (it is on GitHub in fact), just email me if you want to discuss it. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-226850-17777-QnA8naiGzn>