Date: Thu, 22 Mar 2007 08:48:23 -0400 From: WAYNE KING <king.812@osu.edu> To: freebsd-pf@freebsd.org Subject: re: problem with opensuse 10.2 and pf Message-ID: <2dee4ea2debed2.2debed22dee4ea@osu.edu>
next in thread | raw e-mail | index | archive | help
Thanks to Max Laier and Jon Smola for helpful comments on my earlier post. I have not put the flags S/SA option in my rule set as yet. Max asked if I could enable debugging and show what happens when I try to use the internet from the linux box without first issuing the echo "0" > /proc/sys/net/ipv4/tcp_window_scaling command on the linux box. I include what happens below. pigpen is the name of the firewall. Thanks again Max and Jon for the help, wayne ## debug output follows. Linux box IP is ## 128.146.89.77 Mar 22 07:37:46 pigpen /bsd: pf: BAD state: TCP 128.146.89.77:43430 128.146.89.77:43430 212.58.240.41:80 [lo=132938052 high=132938099 win=33304 modulator=0] [lo=828478979 high=828511866 win=46 modulator=0] 4:4 PA seq=132938053 ack=828478979 len=340 ackskew=0 pkts=5 dir=in,fwd Mar 22 07:37:46 pigpen /bsd: pf: BAD state: TCP 128.146.89.77:43430 128.146.89.77:43430 212.58.240.41:80 [lo=132938052 high=132938099 win=33304 modulator=0] [lo=828478979 high=828511866 win=46 modulator=0] 4:4 PA seq=132938053 ack=828478979 len=340 ackskew=0 pkts=5 dir=in,fwd Mar 22 07:37:46 pigpen /bsd: pf: State failure on: 1 | Mar 22 07:37:46 pigpen /bsd: pf: State failure on: 1 |
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2dee4ea2debed2.2debed22dee4ea>