problem with opensuse 10.2 and pf
WAYNE KING
king.812 at osu.edu
Thu Mar 22 12:48:24 UTC 2007
Thanks to Max Laier and Jon Smola for helpful comments on my earlier post. I have not put the flags S/SA option in my rule set as yet. Max asked if I could enable debugging and show what happens when I try to use the internet from the linux box without first issuing the
echo "0" > /proc/sys/net/ipv4/tcp_window_scaling
command on the linux box. I include what happens below. pigpen is the name of the firewall.
Thanks again Max and Jon for the help,
wayne
## debug output follows. Linux box IP is
## 128.146.89.77
Mar 22 07:37:46 pigpen /bsd: pf: BAD state: TCP 128.146.89.77:43430 128.146.89.77:43430 212.58.240.41:80 [lo=132938052 high=132938099 win=33304 modulator=0] [lo=828478979 high=828511866 win=46 modulator=0] 4:4 PA seq=132938053 ack=828478979 len=340 ackskew=0 pkts=5 dir=in,fwd
Mar 22 07:37:46 pigpen /bsd: pf: BAD state: TCP 128.146.89.77:43430 128.146.89.77:43430 212.58.240.41:80 [lo=132938052 high=132938099 win=33304 modulator=0] [lo=828478979 high=828511866 win=46 modulator=0] 4:4 PA seq=132938053 ack=828478979 len=340 ackskew=0 pkts=5 dir=in,fwd
Mar 22 07:37:46 pigpen /bsd: pf: State failure on: 1 |
Mar 22 07:37:46 pigpen /bsd: pf: State failure on: 1 |
More information about the freebsd-pf
mailing list