Large scale NAT with PF - some weird problem
Milan Obuch
freebsd-pf at dino.sk
Sun Jun 28 08:06:21 UTC 2015
On Tue, 23 Jun 2015 11:23:31 +0200
Milan Obuch <freebsd-pf at dino.sk> wrote:
> On Tue, 23 Jun 2015 10:57:44 +0200
> Ian FREISLICH <ian.freislich at capeaugusta.com> wrote:
>
[ snip ]
> > So, I think that the problem is with 9-STABLE. I hate "upgrade to
> > solve your problems" answers because they may not. I do know that
> > 10 has seen a lot of work and none of that work will make it back
> > into 9 because of the PF rewrite. Maybe someone else in this group
> > will chime in.
> >
>
> That's OK. I am a bit conservative on upgrades here because with
> hundreds - thousands users you need a bit of stability too, but
> upgrade to 10-STABLE is currently being prepared. That being written,
> it will not occur today.
>
So, now I am at 10.2-PRERELEASE, r284884, and the issue is still here.
It is totally weird, just change of IP the device is being natted to
makes the issue disappear for this particular customer, but as soon as
this exact IP is used again, the issue is here again.
Could anybody help me to debug this better? It looks like I really
REALLY need some help :( Hate to write anything like this, but it is
urgent for me and I am out of ideas...
Regards,
Milan
More information about the freebsd-pf
mailing list