ipfilter is blocking connections because of not known change after 6th August

Bernhard Valenti bernhard.valenti at gmx.net
Sun Aug 22 08:09:31 PDT 2004


Tomaž Borštnar wrote:

    I recompiled world and kernel today to test for new changes and 
after reboot my incomming connections failed. Tcpdump revealed that 
packets are comming, but no reply was going back.

Previous build was on the evening of 6th August which worked fine. I 
tried removing all rules in ipfilter and it started to work again - but 
without any block rules.
FWIW, i have similar issues with fbsd 4.10-stable. i get blocked icmp 
packets while there are no rules to drop them. and i'm not the only one 
with that or similar issues. the problem on freebsd seems to be that 
ipfilter is version 3.4.35 in kernel but the userland stuff is still at 
3.4.31 (after a full build/install-kernel/world)

eg:
root at lair:~# ipf -V
ipf: IP Filter: v3.4.31 (336)
Kernel: IP Filter: v3.4.35
i'm not using ipfilter on dfbsd so i cant check here.

regards,
bernhard






More information about the Bugs mailing list