kern/187566: incomming ng_l2tp/ipsec packet bypass PF firewall
HASHI Hiroaki
hashiz at meridiani.jp
Wed Mar 19 00:30:02 UTC 2014
The following reply was made to PR kern/187566; it has been noted by GNATS.
From: HASHI Hiroaki <hashiz at meridiani.jp>
To: glebius at FreeBSD.org
Cc: FreeBSD-gnats-submit at freebsd.org
Subject: Re: kern/187566: incomming ng_l2tp/ipsec packet bypass PF firewall
Date: Wed, 19 Mar 2014 09:20:59 +0900 (JST)
Gleb-san
fixed.
But the problem of kern/169620 that was hidden due to this issue will
appear again.
http://www.freebsd.org/cgi/query-pr.cgi?pr=169620
In "Re: kern/187566: incomming ng_l2tp/ipsec packet bypass PF firewall" at Tue, 18 Mar 2014 21:03:18 +0400
Gleb Smirnoff <glebius at FreeBSD.org> wrote:
> Hiroaki-san,
>
> On Fri, Mar 14, 2014 at 04:05:37PM +0900, HASHI Hiroaki wrote:
> H> >Environment:
> H> System: FreeBSD tomba.meridiani.jp 10.0-STABLE FreeBSD 10.0-STABLE #3 r262965: Thu Mar 13 18:44:26 JST 2014 hashiz at stenmark.meridiani.jp:/usr/obj/usr/src/sys/TOMBA amd64
> H>
> H> ng_l2tp: net/mpd5
> H> ipsec: security/ipsec-tools
> H>
> H> >Description:
> H> incoming packet on ng_l2tp interface bypass PF firewall rules.
> H> not nat, no filter.
>
> Can you please check whether the issue is fixed or not by r263307
> commit to stable/10?
>
> --
> Totus tuus, Glebius.
>
More information about the freebsd-bugs
mailing list