From owner-freebsd-net@FreeBSD.ORG  Fri Jul  4 12:10:50 2008
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id AEA6B106567F;
	Fri,  4 Jul 2008 12:10:50 +0000 (UTC)
	(envelope-from jdc@parodius.com)
Received: from mx01.sc1.parodius.com (mx01.sc1.parodius.com [72.20.106.3])
	by mx1.freebsd.org (Postfix) with ESMTP id 896208FC1B;
	Fri,  4 Jul 2008 12:10:50 +0000 (UTC)
	(envelope-from jdc@parodius.com)
Received: by mx01.sc1.parodius.com (Postfix, from userid 1000)
	id 4D7EC1CC081; Fri,  4 Jul 2008 05:10:50 -0700 (PDT)
Date: Fri, 4 Jul 2008 05:10:50 -0700
From: Jeremy Chadwick <koitsu@FreeBSD.org>
To: Kian Mohageri <kian.mohageri@gmail.com>
Message-ID: <20080704121050.GA14604@eos.sc1.parodius.com>
References: <678A03F5-5E8A-4CF6-90DF-AA9A4F30FBE1@stromnet.se>
	<1211037564.6326.27.camel@porksoda>
	<679DB462-75D6-45CC-949C-1BE8E12C22CD@stromnet.se>
	<482FD877.6050707@infracaninophile.co.uk>
	<B44C565F-65A5-498A-9B79-3FFE15E33A7A@stromnet.se>
	<fee88ee40805181029x31755a75i3b61731864e995fd@mail.gmail.com>
	<20080703003955.859BCF180C0@mx.npubs.com>
	<fee88ee40807030855l6d7e6a78hf2138e4783e4beb4@mail.gmail.com>
	<20080704113213.GA13586@eos.sc1.parodius.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20080704113213.GA13586@eos.sc1.parodius.com>
User-Agent: Mutt/1.5.18 (2008-05-17)
Cc: freebsd-stable <freebsd-stable@freebsd.org>, stef@memberwebs.com,
	freebsd-net@freebsd.org, Matthew Seaman <m.seaman@infracaninophile.co.uk>,
	freebsd-pf@freebsd.org, Alex Trull <alex@trull.org>
Subject: Re: connect(): Operation not permitted
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Jul 2008 12:10:50 -0000

On Fri, Jul 04, 2008 at 04:32:13AM -0700, Jeremy Chadwick wrote:
> On Thu, Jul 03, 2008 at 08:55:21AM -0700, Kian Mohageri wrote:
> > A similar/related problem was addressed in OpenBSD 4.3
> > (http://www.openbsd.org/plus43.html).
> > 
> >   * In pf(4), allow state reuse if both sides are in FIN_WAIT_2 and a
> > new SYN arrives.

The OpenBSD diff:

http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf.c.diff?r2=1.559&r1=1.558&f=H

I've submit a FreeBSD PR to get the above backported into RELENG_7 and
RELENG_6:

http://www.freebsd.org/cgi/query-pr.cgi?pr=125261

-- 
| Jeremy Chadwick                                jdc at parodius.com |
| Parodius Networking                       http://www.parodius.com/ |
| UNIX Systems Administrator                  Mountain View, CA, USA |
| Making life hard for others since 1977.              PGP: 4BD6C0CB |