Subject: Re: HEADS UP: IPFilter updated to 4.1.1
To: None <current-users@netbsd.org>
From: Wolfgang S. Rupprecht <wolfgang+gnus20040329T141051@dailyplanet.dontspam.wsrcc.com>
List: current-users
Date: 03/29/2004 14:15:27
In-Reply-To: <Pine.NEB.4.58.0403291955110.204@fw.selonen.org> (Arto
Selonen's message of "29 Mar 2004 17:17:55 GMT")
User-Agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3 (berkeley-unix)
Date: Mon, 29 Mar 2004 14:15:27 -0800
Message-ID: <x7d66v2tc0.fsf@capsicum.wsrcc.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: current-users-owner@NetBSD.org
arto@selonen.org (Arto Selonen) writes:
>> I have just upgraded IPFilter to the latest version (4.1.1) on
>> NetBSD -current. You must recompile kernel and the ipf tools to
>
> The following seem to have appeared after upgrading:
>
> /etc/ipf.conf not properly parsed
> "port = auth" had to be changed to "port = 113"
> "(" not allowed in rules like:
> block return-icmp-as-dest(port-unr)
>
> these will be send-pr'd;
> just wanted to warn others
The new ipf-4.1.1 kernel doesn't seem to like ipv6. 3 boots, three
panics during the time it was still processing /etc/rc.d/* .
(gdb) target core netbsd.0.core
Undefined target command: "core netbsd.0.core". Try "help target".
(gdb) where
#0 0x00000001 in ?? ()
#1 0xc0320b9f in cpu_reboot ()
#2 0xc02ae8e0 in panic ()
#3 0xc0328590 in trap ()
#4 0xc0102c5b in calltrap ()
#5 0xc01353e8 in frpr_udp6 ()
#6 0xc0138fd1 in frpr_ipv6hdr ()
#7 0xc013560d in fr_makefrip ()
#8 0xc014b305 in fr_checkicmp6matchingstate ()
#9 0xc014a2dc in fr_stlookup ()
#10 0xc014a73b in fr_checkstate ()
#11 0xc013627d in fr_check ()
#12 0xc013a047 in fr_check_wrapper6 ()
#13 0xc02ecb2f in pfil_run_hooks ()
#14 0xc015870a in ip6_input ()
#15 0xc0157cbd in ip6intr ()
#16 0xc0102935 in Xsoftnet ()
-wolfgang