Date: Fri, 16 Aug 2013 19:12:27 +0200 From: Daniel Hartmeier <daniel@benzedrine.cx> To: Alexander <axex007@yandex.ru> Cc: freebsd-pf@freebsd.org Subject: Re: Windows 7 + freebsd-pf + windows scale SYN-ACK problem Message-ID: <20130816171227.GB28156@insomnia.benzedrine.cx> In-Reply-To: <520E35B3.4080607@yandex.ru> References: <520E1822.7010505@yandex.ru> <20130816125058.GA28156@insomnia.benzedrine.cx> <520E35B3.4080607@yandex.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Aug 16, 2013 at 06:22:43PM +0400, Alexander wrote: > My connection with server (port 6666) starts to work and i think i > can be satisfied by this solution. But i still cannot understand why > packets are dropped without no state rules. As i revealed they are > dropped between bridge0 and vlan 1 interfaces. This is probably because you filter on bridge0. There are some sysctl's related to this, run sysctl -a | grep bridge I think in some combinations, pf sees packets on the bridge interface with the wrong direction. Do you have a particular reason for filtering on the bridge interface, and not just on the physical interfaces? Daniel
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20130816171227.GB28156>