netbsd-help: Re: NetBSD ipfilter firewall.

Subject: Re: NetBSD ipfilter firewall.
To: None <netbsd-help@netbsd.org>
From: Randy Beaudreault <maccult@pacbell.net>
List: netbsd-help
Date: 05/22/2003 14:06:44

>On Thu, May 22, 2003 at 10:31:51AM -0700, Mine Sakiyama wrote:
>>  [...]
>>
>>  May 22 08:17:13 alex ipmon[82]: 08:17:13.316211 pppoe0 @0:33 b 
>>mail.netbsd.org[155.53.1.253] ->
>>  internet.internal.com[192.168.0.2] PR tcp len 20 (164) frag 
>>144@1336 IN (entire session log
>>  below).
>
>Maybe add 'keep frags' in addition to keep state
>
>--
>Manuel Bouyer <bouyer@antioche.eu.org>
>      NetBSD: 24 ans d'experience feront toujours la difference
>--

Why should you have to add keep frags?  This sounds like an issue 
with PMTUD on mail.netbsd.org, not a problem with his ipf ruleset.
-- 
Randy

OS X - UNIX for the rest of us
NetBSD - Catch the Power!