[Bug 226850] [pf] Matching but failed rules block without return
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Mar 27 15:19:15 UTC 2018
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=226850
--- Comment #10 from vegeta at tuxpowered.net ---
Any rule can fail like this, not only route-to rules, so it is not specific to
them. And I'm taking about responding with RST/ICMP to new connections when
redirection table is already empty.
Injecting RSTs during killing of existing connections I already have written
and it is done using new sysctls, so I always assumed that it would be too much
to include in upstream code. Let's not get into that in this bug report, I will
be of course happy to share code (it is on GitHub in fact), just email me if
you want to discuss it.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-pf
mailing list