Fragmented packets are not redirected
Kristof Provost
kristof at sigsegv.be
Tue Oct 14 13:57:19 UTC 2014
On 2014-10-14 09:33:44 (+0000), Spenst, Aleksej <Aleksej.Spenst at harman.com> wrote:
> It is clear that if the IP fragments are not reassembled at the server
> they cannot be redirected since the redirection rule is written for
> UDP packets. That is why I have this scrub rule at the very beginning
> of my pf.conf:
>
> scrub in on wlan0 all
>
> I thought that this rule should reassemble all the incoming fragments.
> The reassembled UDP packets should be then correctly passed through
> the rdr rule and redirected to my PC. But this does not happen.
>
I think that you want 'scrub in on wlan0 all fragment reassemble'.
Regards,
Kristof
More information about the freebsd-pf
mailing list