kern/115640: [net] [pf] pfctl -k dont works

Radim Kolar hsn at netmag.cz
Mon Aug 20 04:30:10 PDT 2007 

>Number:         115640
>Category:       kern
>Synopsis:       [net] [pf] pfctl -k dont works
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Aug 20 11:30:01 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator:     Radim Kolar
>Release:        FreeBSD 6.2-RELEASE i386
>Organization:
>Environment:
System: FreeBSD sanatana.dharma 6.2-RELEASE FreeBSD 6.2-RELEASE #1: Sun Jan 14 11:36:17 CET 2007 root at sanatana.dharma:/usr/obj/usr/src/sys/UP i386


	
>Description:
pfctl -k dont works. no states are killed. i tested same stuff on
openbsd 4.1 and it works there.
	
>How-To-Repeat:
(hsn at ttyp1):~% sudo pfctl -s state
No ALTQ support in kernel
ALTQ related functions disabled
self tcp 10.0.0.2:22 <- 10.0.0.3:3614       ESTABLISHED:ESTABLISHED
self tcp 10.0.0.2:22 <- 10.0.0.3:3153       ESTABLISHED:ESTABLISHED
self tcp 10.0.0.2:3128 <- 10.0.0.3:2704       ESTABLISHED:ESTABLISHED
self tcp 10.0.0.2:3128 <- 10.0.0.3:2746       FIN_WAIT_2:FIN_WAIT_2
self tcp 10.0.0.2:3128 <- 10.0.0.3:2747       FIN_WAIT_2:FIN_WAIT_2
self tcp 10.0.0.2:53883 -> 72.14.221.17:80       ESTABLISHED:ESTABLISHED
self tcp 10.0.0.2:52929 -> 72.14.221.18:80       FIN_WAIT_2:FIN_WAIT_2
self tcp 10.0.0.2:54132 -> 64.233.183.99:80       FIN_WAIT_2:FIN_WAIT_2
self tcp 10.0.0.2:61930 -> 64.213.200.101:80       FIN_WAIT_2:FIN_WAIT_2
self tcp 10.0.0.2:5432 <- 216.139.224.106:56918       ESTABLISHED:ESTABLISHED
(hsn at ttyp1):~% sudo pfctl -k 216.139.224.106 -k 10.0.0.2
No ALTQ support in kernel
ALTQ related functions disabled
killed 0 states from 1 sources and 1 destinations
(hsn at ttyp1):~% sudo pfctl -k 216.139.224.106
No ALTQ support in kernel
ALTQ related functions disabled
killed 0 states from 1 sources and 0 destinations

dump of network configuration:
fxp0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        options=8<VLAN_MTU>
        ether 00:a0:c9:0f:97:1e
        media: Ethernet manual
ed0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        ether 00:00:01:02:20:56
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
        inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3
        inet6 ::1 prefixlen 128
        inet 127.0.0.1 netmask 0xff000000
        inet 127.0.0.2 netmask 0xff000000
bridge0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
        inet 10.0.0.2 netmask 0xffffff00 broadcast 10.0.0.255
        ether fe:d0:a2:b9:14:84
        priority 32768 hellotime 2 fwddelay 15 maxage 20
        member: tap0 flags=3<LEARNING,DISCOVER>
        member: ed0 flags=3<LEARNING,DISCOVER>
        member: fxp0 flags=3<LEARNING,DISCOVER>
tap0: flags=8942<BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
        ether 00:bd:9d:cd:89:00
        Opened by PID 42886
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-bugs mailing list