"reass all from any to any" kills IPv6 packets
Emil Muratov
gpm at hotplug.ru
Fri Mar 6 21:23:20 UTC 2015
Andrey V. Elsukov <bu7cher at yandex.ru> писал(а) в своём письме Thu, 05 Mar
2015 19:12:10 +0300:
> On 05.03.2015 18:26, Emil Muratov wrote:
>> On 03.02.2015 13:42, Lev Serebryakov wrote:
>>>
>>> Recommended "reass all from any to any in" kills all incoming IPv6
>>> packets (at least, packets from 6in4 tunnel). "reass ip4 from any to
>>> any in" works as expected.
>>>
>>> Is it documentation bug or implementation bug?
>>
>> Both :) Hit this bug several years ago, seems it is still here
>
> AFAIR, I made the patch for such PR, but nobody wanted to test it :)
> https://people.freebsd.org/~ae/ipfw_ip6reass.diff
>
> Probably now I can test it myself a bit later.
>
Still doesn't work for me. What was done: applied patch to
/usr/src/sys/netpfil/ipfw/ip_fw2.c, rebuilt & installed kernel & ipfw add
10 reass all from any to any in
More information about the freebsd-ipfw
mailing list