Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 16 Jul 2023 10:44:44 +0000
From:      bugzilla-noreply@freebsd.org
To:        pf@FreeBSD.org
Subject:   [Bug 268717] [pf] [ipnat] rdr rules don't work for traffic originating at localhost
Message-ID:  <bug-268717-16861-QzT6TOLdHH@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-268717-16861@https.bugs.freebsd.org/bugzilla/>
References:  <bug-268717-16861@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268717

--- Comment #36 from commit-hook@FreeBSD.org ---
A commit in branch stable/13 references this bug:

URL:
https://cgit.FreeBSD.org/src/commit/?id=3D6dfb2c2dce0ffabd783ec24b8d4d12899=
3363f72

commit 6dfb2c2dce0ffabd783ec24b8d4d128993363f72
Author:     Doug Rabson <dfr@FreeBSD.org>
AuthorDate: 2023-06-20 13:01:58 +0000
Commit:     Doug Rabson <dfr@FreeBSD.org>
CommitDate: 2023-07-14 10:07:58 +0000

    pf: Add code to enable filtering for locally delivered packets

    This is disabled by default since it potentially changes the behavior of
    existing filter rule sets. To enable this extra filter for packets being
    delivered locally, use:

            sysctl net.pf.filter_local=3D1
            service pf restart

    PR:             268717
    Reviewed-by:    kp
    MFC-after:      2 weeks
    Differential Revision: https://reviews.freebsd.org/D40373

    (cherry picked from commit 3a1f834b5228986a7c14fd60da13cf2700e80996)

 UPDATING                              | 12 ++++++++++++
 sys/netpfil/pf/pf_ioctl.c             | 20 ++++++++++++++++++++
 tests/sys/netpfil/common/utils.subr   |  3 +--
 tests/sys/netpfil/pf/fragmentation.sh |  3 ++-
 tests/sys/netpfil/pf/killstate.sh     | 24 ++++++++++++++++--------
 tests/sys/netpfil/pf/map_e.sh         |  3 ++-
 tests/sys/netpfil/pf/pass_block.sh    |  3 ++-
 tests/sys/netpfil/pf/pfsync.sh        |  1 +
 tests/sys/netpfil/pf/route_to.sh      |  3 ++-
 tests/sys/netpfil/pf/set_skip.sh      |  2 +-
 tests/sys/netpfil/pf/table.sh         |  6 ++++--
 11 files changed, 63 insertions(+), 17 deletions(-)

--=20
You are receiving this mail because:
You are the assignee for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-268717-16861-QzT6TOLdHH>