[Bug 265649] [pf]: regression: PF ignores translation settings on gre(4)
Date: Fri, 05 Aug 2022 14:18:09 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=265649
Bug ID: 265649
Summary: [pf]: regression: PF ignores translation settings on
gre(4)
Product: Base System
Version: 13.1-RELEASE
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: kern
Assignee: bugs@FreeBSD.org
Reporter: eugene@zhegan.in
Starting from 13.0 PF ignores translation settings for gre(3) (at least !)
interfaces.
PF rules:
nat on gre0 inet proto tcp from <mylans> to any -> 10.4.0.42
<mylans> table:
# pfctl -t mylans -T show
10.8.0.0/24
172.16.0.1
192.168.52.0/24
192.168.53.0/24
192.168.54.0/24
192.168.55.0/24
192.168.56.0/24
192.168.57.0/24
192.168.58.0/24
192.168.59.0/24
192.168.60.0/24
192.168.100.0/24
192.168.175.0/24
192.168.176.0/24
PF rules with counters:
@3 nat on gre0 inet proto tcp from <mylans:14> to any -> 10.4.0.42
[ Evaluations: 113076 Packets: 0 Bytes: 0 States: 0
]
[ Inserted: uid 0 pid 77972 State Creations: 0 ]
tcpdump on outer interface:
17:03:32.713893 IP 188.17.155.29 > 89.249.17.74: GREv0, length 64: IP
192.168.57.23.50768 > 10.3.51.63.22: Flags [S], seq 384973512, win 29200,
options [mss 1460,sackOK,TS val 4036935166 ecr 0,nop,wscale 7], length 0
17:03:33.715044 IP 188.17.155.29 > 89.249.17.74: GREv0, length 64: IP
192.168.57.23.50768 > 10.3.51.63.22: Flags [S], seq 384973512, win 29200,
options [mss 1460,sackOK,TS val 4036936168 ecr 0,nop,wscale 7], length 0
Had to use ipfw for that.
This was working across all of the 6.x -> 12.x versions.
--
You are receiving this mail because:
You are the assignee for the bug.