[Bug 200330] panic: pf_addr_cmp: unknown address family 0 when scrub fragment drop-ovl is used
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Jun 11 18:08:03 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200330
--- Comment #17 from Kristof Provost <kristof at freebsd.org> ---
'reassemble' does the right thing, in that it will fully reassemble the packet.
It handles overlaps, by discarding the (parts of) packets it's already seen.
Processing continues with the full packet, not on a fragment-per-fragment
basis.
When filtering input packets that's where it ends, because the host would have
to reassemble anyway.
When forwarding we also just continue with the full packet, and fragment again
when transmitting. This implies that it's possible that we'll receive 5 packets
of 80 bytes, but we transmit one packet of 400 bytes.
(Note that this is slightly different for IPv6. There we'll always refragment
to the size of the largest fragment we received so we don't break path MTU.)
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the freebsd-pf
mailing list