kern/86752: pf does not use default timeouts when reloading
config file
Vladimír Kotal
vlada at devnull.cz
Tue Oct 4 11:40:17 PDT 2005
The following reply was made to PR kern/86752; it has been noted by GNATS.
From: =?ISO-8859-1?Q?Vladim=EDr_Kotal?= <vlada at devnull.cz>
To: bug-followup at FreeBSD.org,
=?ISO-8859-1?Q?Vladim=EDr_Kotal?= <vlada at devnull.cz>
Cc:
Subject: Re: kern/86752: pf does not use default timeouts when reloading config file
Date: Tue, 4 Oct 2005 20:38:10 +0200
This problem can be fixed by applying following patch:
http://techie.devnull.cz/public/patches/pfctl-timeout.patch
which makes behavior of options consistent with behavior of rules
(within pf.conf).
This means that global timeout settings will be applied only when
ruleset is parsed successfully (which is not happening in current pf
implementation) and also when lines with global timeout settings (or
optimization lines) are removed, default timeout settings are restored.
(also not happening in current pf implem.)
More information about the freebsd-bugs
mailing list