kern/121668: connect randomly fails with EPERM with some pf rules

Kian Mohageri kian at restek.wwu.edu
Thu Mar 13 19:00:09 UTC 2008


The following reply was made to PR kern/121668; it has been noted by GNATS.

From: Kian Mohageri <kian at restek.wwu.edu>
To: bug-followup at FreeBSD.org, lfrigault at agneau.org
Cc:  
Subject: Re: kern/121668: connect randomly fails with EPERM with some pf rules
Date: Thu, 13 Mar 2008 11:29:52 -0700

 This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
 --------------enigB37C85A9359B7920117FA840
 Content-Type: text/plain; charset=ISO-8859-1
 Content-Transfer-Encoding: quoted-printable
 
 Does state-mismatch counter increase when this happens (pfctl -si)?
 
 I remember similar behavior and it was caused by source port reuse on
 the client (so the new connection caused a state mismatch on an old state=
 ).
 
 
 
 --------------enigB37C85A9359B7920117FA840
 Content-Type: application/pgp-signature; name="signature.asc"
 Content-Description: OpenPGP digital signature
 Content-Disposition: attachment; filename="signature.asc"
 
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1.4.8 (MingW32)
 Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
 iEYEARECAAYFAkfZcqMACgkQfLazdIP7nIMD5gCfU0eN8zZ9mOpIzd5e365sukEW
 Zn4An3w78DG1Fv3kRWMJdFAEgsyxwbD/
 =yDIr
 -----END PGP SIGNATURE-----
 
 --------------enigB37C85A9359B7920117FA840--


More information about the freebsd-pf mailing list