[Bug 268717] [pf] rdr rules don't work for traffic originating at localhost

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 268717] [pf] rdr rules don't work for traffic originating at localhost"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 02 Jan 2023 13:48:25 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=268717

--- Comment #1 from dfr@rabson.org ---
Packet trace showing the problem:

# telnet 10.123.0.1 8080
Trying 10.123.0.1...
13:03:58.531882 IP (tos 0x10, ttl 63, id 0, offset 0, flags [DF], proto TCP
(6), length 60)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [S], cksum 0x3465 (incorrect ->
0x5ae4), seq 2886169781, win 65535, options [mss 16344,nop,wscale 6,sackOK,TS
val 3565974209 ecr 0], length 0
13:03:58.531897 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 60)
    10.123.0.2.http > 10.123.0.1.13733: Flags [S.], cksum 0x9ccf (correct), seq
1244013501, ack 2886169782, win 65535, options [mss 1460,nop,wscale 6,sackOK,TS
val 640967696 ecr 3565974209], length 0
13:03:58.531908 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 40)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [R], cksum 0x4435 (correct), seq
2886169782, win 0, length 0
13:03:59.557528 IP (tos 0x10, ttl 63, id 0, offset 0, flags [DF], proto TCP
(6), length 60)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [S], cksum 0x3465 (incorrect ->
0x56dd), seq 2886169781, win 65535, options [mss 16344,nop,wscale 6,sackOK,TS
val 3565975240 ecr 0], length 0
13:03:59.557595 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 60)
    10.123.0.2.http > 10.123.0.1.13733: Flags [S.], cksum 0x94c1 (correct), seq
1244013501, ack 2886169782, win 65535, options [mss 1460,nop,wscale 6,sackOK,TS
val 640968727 ecr 3565975240], length 0
13:03:59.557655 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 40)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [R], cksum 0x4435 (correct), seq
2886169782, win 0, length 0
13:04:01.760495 IP (tos 0x10, ttl 63, id 0, offset 0, flags [DF], proto TCP
(6), length 60)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [S], cksum 0x3465 (incorrect ->
0x4e42), seq 2886169781, win 65535, options [mss 16344,nop,wscale 6,sackOK,TS
val 3565977443 ecr 0], length 0
13:04:01.760564 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 60)
    10.123.0.2.http > 10.123.0.1.13733: Flags [S.], cksum 0x838b (correct), seq
1244013501, ack 2886169782, win 65535, options [mss 1460,nop,wscale 6,sackOK,TS
val 640970930 ecr 3565977443], length 0
13:04:01.760625 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto TCP (6),
length 40)
    10.123.0.1.13733 > 10.123.0.2.http: Flags [R], cksum 0x4435 (correct), seq
2886169782, win 0, length 0

-- 
You are receiving this mail because:
You are the assignee for the bug.