kern/169620: [ng] [pf] ng_l2tp incoming packet bypass pf
firewall
HASHI Hiroaki
hashiz at meridiani.jp
Thu Aug 2 11:10:13 UTC 2012
The following reply was made to PR kern/169620; it has been noted by GNATS.
From: HASHI Hiroaki <hashiz at meridiani.jp>
To: longwitz at incore.de
Cc: bug-followup at freebsd.org
Subject: Re: kern/169620: [ng] [pf] ng_l2tp incoming packet bypass pf
firewall
Date: Thu, 02 Aug 2012 19:20:48 +0900 (JST)
In "Re: kern/169620: [ng] [pf] ng_l2tp incoming packet bypass pf firewall" at Thu, 02 Aug 2012 10:39:20 +0200
Andreas Longwitz <longwitz at incore.de> wrote:
> Hi,
>> PF firewall does not examine incomming packet on ng_l2tp interface.
>
> If your incoming packets are handled by IPSec before ng_l2tp your
> problem is explained in
Yes, handled by IPSec.
>
> lists.freebsd.org/pipermail/freebsd-net/2012-January/031161.html
I will try it.
Thanks.
More information about the freebsd-net
mailing list