Subject: kern/11670: ipf eventually blocks all traffic (thus ignoring any rules set)
To: None <firstname.lastname@example.org>
From: None <email@example.com>
Date: 12/09/2000 04:27:14
>Synopsis: ipf eventually blocks all traffic (thus ignoring any rules set)
>Arrival-Date: Sat Dec 09 04:27:00 PST 2000
>Originator: Stephen Welker
Nemostar Pty Ltd
NetBSD hermes 1.4.3 NetBSD 1.4.3 (GENERIC) #60: Wed Nov 1 01:35:30 MET 2000 firstname.lastname@example.org:/usr/src/sys/arch/i386/compile/GENERIC i386
With ipf enabled (sysctl -w net.inet.ip.forwarding=1), after say a few hours of solid traffic (at modem speed) all traffic is blocked.
see below "Fix to the problem if known" for more details.
"ipf -D" followed by "ipf -E -Fa -f /etc/ipf.conf" will fix the problem a few times. Finally only a "ipf -D" will allow any traffic at all. A reboot is then necessary to achieve the use of any filter rules.