[Bug 267278] ipfw mask addr:mask syntax creates wrong rule
- In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 267278] ipfw mask addr:mask syntax creates wrong rule"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Wed, 04 Jan 2023 12:25:37 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=267278 --- Comment #5 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> --- (In reply to Andrey V. Elsukov from comment #4) Thank you for the reply, Andrey, and for upstreaming this awesome, pioneer NAT64 module (pioneer with regard to the state of the three FreeBSD firewalls). Hijacked PR is not a usual way to troubleshoot things, but people might benefit from following the thread, so I will go on. It indeed works 100% as expected in netisr mode, pipes in both directions are respected. With net.inet.ip.fw.nat64_direct_output=1, packets still go through one pipe - from the local IPv6 NATed64 pool to 64:ff9b::/96 My concern is the requirement to set net.inet.ip.fw.one_pass=0, but probably without this setting dummynet and nat64lsn aren't supposed to work together, is that right? -- You are receiving this mail because: You are the assignee for the bug.