kern/164402: [pf] pf crashes with a particular set of rules when
first matching packet arrives
Gleb Smirnoff
glebius at FreeBSD.org
Tue Apr 17 14:02:07 UTC 2012
On Tue, Apr 17, 2012 at 12:46:08PM +0400, Gleb Smirnoff wrote:
T> We can make the assignment like:
T>
T> if (ifp->if_flags & IFF_LOOPBACK)
T> m->m_flags |= M_SKIP_FIREWALL;
I've tested this plus MTAG_PERSISTENT on pf tags, and it looks like this
works.
At least for the "fastroute" case, which was defnitely not working before.
--
Totus tuus, Glebius.
More information about the freebsd-pf
mailing list