[Bug 267278] ipfw mask addr:mask syntax creates wrong rule

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=267278

--- Comment #5 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> ---
(In reply to Andrey V. Elsukov from comment #4)

Thank you for the reply, Andrey, and for upstreaming this awesome, pioneer
NAT64 module (pioneer with regard to the state of the three FreeBSD firewalls).

Hijacked PR is not a usual way to troubleshoot things, but people might benefit
from following the thread, so I will go on.

It indeed works 100% as expected in netisr mode, pipes in both directions are
respected. With net.inet.ip.fw.nat64_direct_output=1, packets still go through 
one pipe - from the local IPv6 NATed64 pool to 64:ff9b::/96

My concern is the requirement to set net.inet.ip.fw.one_pass=0, but probably
without this setting dummynet and nat64lsn aren't supposed to work together, is
that right?

-- 
You are receiving this mail because:
You are on the CC list for the bug.