[Bug 266598] if_ovpn(4) DCO module not supporting correctly IPv6 Traffic Class for tunneled packets

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 266598] if_ovpn(4) DCO module not supporting correctly IPv6 tunneling"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 26 Sep 2022 09:04:29 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=266598

--- Comment #9 from Gert Doering <gert@greenie.muc.de> ---
(In reply to Kristof Provost from comment #7)

I have now tested a bit more.  It's... interesting.

Sending a packet with ToS 0x10 (fping6 -O 0x10) into an ovpn(4) interface will
properly transmit the encapsulated packet to the remote host *but* "tcpdump -n
-i tun7" will not show the packet.

Receiving a packet with ToS 0x10 on an ovpn(4) OpenVPN peer (encrypted packet
coming in from LAN) will neither show the packet on tcpdump, nor receive it
into "FreeBSD stack".

Based on this I have now built a t_client test that will excercise ping tests
with ToS 0x10, so I can automatedly test if it works or breaks.  Thanks for the
challenge :-)

-- 
You are receiving this mail because:
You are the assignee for the bug.