netbsd-bugs: kern/29474: ipf 4.1.6 does not work

Subject: kern/29474: ipf 4.1.6 does not work
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: Martin Husemann <martin@duskware.de>
List: netbsd-bugs
Date: 02/20/2005 23:57:00

>Number:         29474
>Category:       kern
>Synopsis:       ipf 4.1.6 does not work
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun Feb 20 23:57:00 +0000 2005
>Originator:     Martin Husemann
>Release:        NetBSD 2.99.16
>Organization:
>Environment:
System: NetBSD night-owl.duskware.de 2.99.16 NetBSD 2.99.16 (NIGHT-OWL) #2: Wed Feb 16 17:05:22 CET 2005 martin@beasty.aprisoft.de:/usr/src/sys/arch/i386/compile/NIGHT-OWL i386
Architecture: i386
Machine: i386
>Description:

I upgraded my sparc64 router to -current today and ipf/nat stopped working.
I get single-packet replies over nated connection, but never see anything
further. So telnet to www.netbsd.org on port 80 and "get /index.html" works,
but opening that page in mozilla does not.

>How-To-Repeat:

Just run -current in a NAT setup.
I explicitily disabled all ipfilter rules to make sure it is not some bogus
blocks from the filter part.

>Fix:
n/a