From owner-freebsd-questions@FreeBSD.ORG Mon May 30 18:42:55 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A31B016A41C for ; Mon, 30 May 2005 18:42:55 +0000 (GMT) (envelope-from scott@maxify.com) Received: from vertigo.maxify.com (ns.maxify.com [216.218.213.18]) by mx1.FreeBSD.org (Postfix) with SMTP id 5ADFC43D1D for ; Mon, 30 May 2005 18:42:55 +0000 (GMT) (envelope-from scott@maxify.com) Received: (qmail 24422 invoked from network); 29 May 2005 21:05:07 -0000 Received: from unknown (HELO ?66.92.188.147?) (66.92.188.147) by ns.maxify.com with SMTP; 29 May 2005 21:05:07 -0000 Mime-Version: 1.0 (Apple Message framework v728) Content-Transfer-Encoding: 7bit Message-Id: Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed To: freebsd-questions@freebsd.org From: Scott Stevenson Date: Sun, 29 May 2005 13:54:48 -0700 X-Mailer: Apple Mail (2.728) Subject: Clients receive only first 4k (issue with pf.conf) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 May 2005 18:42:55 -0000 I originally asked about this back in February: Then just posted again recently with more details: I *finally* figured out that pf was responsible. Specifically, this line: out on $ext_if proto { tcp, udp } all keep state Everything's fine if I change it to this: out on $ext_if proto { tcp, udp } all The stock version of pf.conf has the "keep state" version, though it's commented out by default. Is this a bug in pf, or is it normal behavior? Is it reasonable to use the version without the "keep state" qualifier? Thanks, - Scott