misc/63724: IPFW2 Queues dont t work
Alex de Kruijff
akruijff at dds.nl
Wed Mar 3 15:50:01 PST 2004
>Number: 63724
>Category: misc
>Synopsis: IPFW2 Queues dont t work
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Mar 03 15:50:00 PST 2004
>Closed-Date:
>Last-Modified:
>Originator: Alex de Kruijff
>Release: 5.2.1
>Organization:
>Environment:
FreeBSD alex.lan 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE #0: Thu Feb 26 12:33:02 CET 2004 akruijff at alex.lan:/temp/obj/usr/src/sys/I686 i386
>Description:
IPFW isn't properly processen ip packekets when using queues. Using pipes does work. This results in los of the network.
31600 0 0 count ip from any to any
31610 0 0 queue 2 ip from 192.168.31.48/29 to any
31710 0 0 skipto 31999 ip from 192.168.31.48/29 to any
31720 0 0 skipto 31999 ip from me to any uid akruijff
31998 0 0 reject log ip from any to any
31999 0 0 allow ip from any to any
This setup does work on a recent 4.9 system
My kernel includes:
#options QUOTA # enable disk quotas
options IPFIREWALL # firewall
options IPFIREWALL_DEFAULT_TO_ACCEPT # allow everything by default
#options IPFIREWALL_FORWARD # enable transparent proxy support
options IPFIREWALL_VERBOSE # enable logging to syslogd(8)
options IPFIREWALL_VERBOSE_LIMIT=100 # limit verbosity
options DUMMYNET # This needs IPFIREWALL
(FORWARD didtn' compile at one time, so i cut it out.)
>How-To-Repeat:
Setup IPFW and use a queue then try it out.
>Fix:
Non known
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list