kern/164402: [pf] pf crashes with a particular set of rules
when first matching packet arrives
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Tue Apr 17 16:32:36 UTC 2012
On 17. Apr 2012, at 09:48 , Gleb Smirnoff wrote:
> Replying on only on paragrapg, everything else agreed.
>
> On Tue, Apr 17, 2012 at 11:33:27AM +0200, Ermal Lu?i wrote:
> E> The only problem i might see is when running more than one firewall
> E> together but still there are other issues when you do that at pfil(9)
> E> level.
>
> Well, playing with two firewalls was never safe and clear, there always
> be edge cases in such setups.
A lot of people have used ipfw to filter L2 MAC addresses etc and pf for everything else in the past. So certainly is not an edge case.
--
Bjoern A. Zeeb You have to have visions!
It does not matter how good you are. It matters what good you do!
More information about the freebsd-pf
mailing list