Subject: kern/27042: ipfilter 4.1.3 return-icmp(filter-prohib) packets have wrong icmp checksum
To: None <gnats-bugs@gnats.NetBSD.org>
From: None <carton@Ivy.NET>
List: netbsd-bugs
Date: 09/26/2004 18:46:49
>Number: 27042
>Category: kern
>Synopsis: ipfilter 4.1.3 return-icmp(filter-prohib) packets have wrong icmp checksum
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: kern-bug-people
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Sun Sep 26 18:47:00 UTC 2004
>Closed-Date:
>Last-Modified:
>Originator: Miles Nordin
>Release: NetBSD 2.0_BETA 2004-08-15
>Organization:
>Environment:
System: NetBSD lucette 2.0_BETA NetBSD 2.0_BETA (LUCETTE-$Revision: 1.1 $) #4: Sat Sep 11 13:03:44 EDT 2004 carton@castrovalva:/scratch/src/sys/arch/sparc64/compile/LUCETTE sparc64
Architecture: sparc64
Machine: sparc64
>Description:
18:43:43.214429 216.158.24.193 > 216.158.24.196: icmp: host 192.168.15.14 unreachable - admin prohibited filter (wrong icmp csum) for 216.158.24.196.65516 > 192.168.15.14.23: [|tcp] (DF) (ttl 64, id 1176, len 60) (DF) (ttl 64, id 1742, len 64)
>How-To-Repeat:
block return-icmp(filter-prohib) in log on tlp2 proto tcp from any to 192.168.0.0/16
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted: