pf wants icmp6 protocol

maciejej at msoe.edu maciejej at msoe.edu
Sat Jan 1 13:16:27 PST 2005


The pf.conf man page specifically mentions "icmp6" as a protocol: "This
rule applies only to packets of this protocol.  Common proto-cols are
icmp(4), icmp6(4), tcp(4), and udp(4).  For a list of all the protocol
name to number mappings used by pfctl(8), see the file /etc/protocols."

/etc/protocols does not, however, contain "icmp6" so any mention of it in
pf.conf will cause pfctl to fail to load the rules. A trivial diff to add
an alias for "icmp6" is included below. FreeBSD and NetBSD HEAD contain
the same change with slight differences in whitespace.

--- protocols   2005-01-01 14:04:40.587355664 -0600
+++ protocols-icmp6     2005-01-01 14:44:31.057948896 -0600
@@ -66,7 +66,7 @@
 mobile 55      MOBILE          # IP Mobility
 tlsp   56      TLSP            # Transport Layer Security Protocol
 skip   57      SKIP            # SKIP
-ipv6-icmp      58      IPV6-ICMP       # ICMP for IPv6
+ipv6-icmp 58   IPV6-ICMP icmp6 # ICMP for IPv6
 ipv6-nonxt     59      IPV6-NONXT      # no next header for ipv6
 ipv6-opts      60      IPV6-OPTS       # destination options for ipv6
 #      61                      # any host internal protocol





More information about the Submit mailing list