Date: Mon, 20 Oct 2014 15:03:17 -0500 From: Matthew Grooms <mgrooms@shrew.net> To: freebsd-net@freebsd.org Subject: Re: Broken IPsec + enc +pf/ipfw Message-ID: <54456A85.9010409@shrew.net> In-Reply-To: <1413834273.2953625.181228801.6E462532@webmail.messagingengine.com> References: <544535C2.9020301@shrew.net> <1413834273.2953625.181228801.6E462532@webmail.messagingengine.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 10/20/2014 2:44 PM, Mark Felder wrote: > > On Mon, Oct 20, 2014, at 11:18, Matthew Grooms wrote: >> All, >> >> There appears to be an issue with FreeBSD 10.x when using enc device to >> filter inbound traffic on the receive path. After searching the mailing >> lists, I see two different people reporting the issue ... >> > > Your subject mentions ipfw, but I don't see any mention of it in the > body of your email or the bug report. Is this problem strictly related > to pf? Is ipfw unaffected? The link to the last email thread that I included made mention of ipfw. I am only testing the interaction with pf. I assume all the firewalls hook into pfil in more or less the same fashion, so it doesn't surprise me that both would experience the same dysfunction given the nature of the issue. -Matthew
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?54456A85.9010409>