kern/148157: [ipfw] IPFW in kernel nat BUG found in FreeBSD
8.1-PRERELEASE
Vladislav Yershov
VYershov at umc.com.ua
Thu Oct 14 09:30:15 UTC 2010
The following reply was made to PR kern/148157; it has been noted by GNATS.
From: "Vladislav Yershov" <VYershov at umc.com.ua>
To: <bug-followup at FreeBSD.org>,
<pookme at hotmail.com>
Cc:
Subject: Re: kern/148157: [ipfw] IPFW in kernel nat BUG found in FreeBSD 8.1-PRERELEASE
Date: Thu, 14 Oct 2010 12:08:26 +0300
This is a multi-part message in MIME format.
------=_NextPart_000_012F_01CB6B98.81E216F0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
charset="koi8-r"
I have crashes when use next rule:
ipfw add nat 100 ip from any to any via em0
I detect crash happen when any software of my box try to create tcp =
outgoing connection.
To solve this problem I use next rules:
ipfw add nat 100 ip from {$internal_subnet} to any out via em0
ipfw add nat 100 ip from any to me in via em0
------=_NextPart_000_012F_01CB6B98.81E216F0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/html;
charset="koi8-r"
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Dkoi8-r">
<META content=3D"MSHTML 6.00.2900.2853" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>I have crashes when use next=20
rule:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3>ipfw=20
add nat 100 ip from any to any via em0<BR></FONT></FONT></DIV>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3><FONT=20
face=3DArial size=3D2>I detect crash happen when any software of =
my box try to=20
create tcp outgoing connection.</FONT></FONT></FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3><FONT=20
face=3DArial size=3D2>To solve this problem I use next=20
rules:</FONT></FONT></FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3><FONT=20
face=3DArial size=3D2>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3>ipfw=20
add nat 100 ip from {$internal_subnet} to any out via em0<BR>
<DIV><FONT face=3DArial size=3D2><FONT face=3D"Times New Roman" =
size=3D3>ipfw=20
add nat 100 ip from any to me in via=20
em0<BR></FONT></FONT></DIV></FONT></FONT></DIV></FONT></DIV></FONT></FONT=
></BODY></HTML>
------=_NextPart_000_012F_01CB6B98.81E216F0--
More information about the freebsd-ipfw
mailing list