[pf4freebsd] Bridging 2nd try and call for testers
Max Laier
max at love2party.net
Wed Sep 15 20:49:26 PDT 2004
Brandon Weisz wrote:
> I tested your patch with basically the same setup as Alan. I'm using
> the pf port, not sure if I should be testing with 1.62.
>
> The quick and dirty is I didn't see any of the debug messages from
> bridge.c.diff in the dmesg.
>
> The results(?) along with my setup are attached.
okay ... after ripping off our hair for some days we finnally discovered the
real problem. It is a dirty hack to bring PFIL_HOOKS definition to pfil.h in
case you have IPFILTER definition. I'll send-pr about it, but would like you
to test something first:
get clean kernelsources and add the following to bridge.c:
Before the first include (<sys/param.h>):
> #ifndef KLD_MODULE
> #include "opt_pfil_hooks.h"
> #endif
Then build your kernel with:
options BRIDGE #you need it built in!
options PFIL_HOOKS
and try again to get pf running. Remember to set net.link.ether.bridge_ipf:
1 This time it should at least see some packets ... or get a panic, not sure
about it ;)
Thank you for your help.
Max
More information about the freebsd-pf
mailing list