Subject: Re: kern/32444: Small packets are dropped by IPfilter
To: None <gnats-bugs@netbsd.org>
From: Reinoud Zandijk <reinoud@netbsd.org>
List: netbsd-bugs
Date: 01/03/2006 14:16:49
On Tue, Jan 03, 2006 at 01:05:03PM +0000, YAMAMOTO Takashi wrote:
> it'd be better to show your rule which triggers the behaviour.
i tried with and without the following line, but with no effect:
block in log quick proto tcp from any to any with short
The total configuration file is:
block in log quick from any to any with ipopts
block in log quick proto tcp from any to any with short
pass out on hme0 all head 150
block out from 127.0.0.0/8 to any group 150
block out from any to 127.0.0.0/8 group 150
pass in on hme0 all head 100
block in from 127.0.0.0/8 to any group 100
pass out on le0 all head 250
block out from 127.0.0.0/8 to any group 250
block out from any to 127.0.0.0/8 group 250
pass in on le0 all head 200
block in from 127.0.0.0/8 to any group 200
pass out on gif0 all head 350
block out from 127.0.0.0/8 to any group 350
block out from any to 127.0.0.0/8 group 350
pass in on gif0 all head 300
block in from 127.0.0.0/8 to any group 300