[Bug 276619] pfsync not synching all states from system running 13.2 to system running 14.0 (pfsync0 set to version 1301)

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 27 Jan 2024 13:40:09 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=276619

--- Comment #4 from Lee Ziegenhals <lee@perftech.com> ---
Created attachment 248002
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=248002&action=edit
Packet capture of pfsync traffic

Here is a packet capture of some of the pfsync traffic, captured from the
Ethernet interface on the 14.0 side. The 13.2 system is 10.170.0.1 and the 14.0
system is 10.170.0.2.

Interestingly, this file decodes properly (albeit with some formatting issues)
using tcpdump (version 4.9.3) on the 13.2 system, but does not decode using
tcpdump (version 4.99.4) on the 14.0 side.

Running tcpdump post-capture on the 13.2 system:

# tcpdump -r fw2-igb0-1.pcap -nv | less
reading from file fw2-igb0-1.pcap, link-type EN10MB (Ethernet)
07:17:25.158773 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pfsync
(240), length 1500)
    10.170.0.1 > 10.170.0.2: PFSYNCv5 len 1480
    insert count 6\0x0a all proto 58 2001:4870:610e:2:3::4a.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a       
all proto 58 2001:4870:610e:2:4::107.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a  all
proto 58 2001:4870:610e:2:4::55.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13
  NO_TRAFFIC:NO_TRAFFIC\0x0a        all proto 58 2001:4870:610e:2:4::232.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a  all
proto 6 206.210.200.121.29212 <- 79.124.58.150.43286   CLOSED:SYN_SENT\0x0a all
proto 17 206.210.192.32.123 <- 34.235.242.82.55727   SINGLE:MULTIPLE
    eof count 1
07:17:25.158777 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pfsync
(240), length 1346)
    10.170.0.1 > 10.170.0.2: PFSYNCv5 len 1326
    insert count 5\0x0a all proto 58 2001:4870:610e:2:3::52.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a       
all proto 58 2001:4870:610e:2:4::231.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a  all
proto 58 2001:4870:610e:2:4::89.13 <- 2406:da17:a1c:b100:8492:c34c:b242:dab1.13
  NO_TRAFFIC:NO_TRAFFIC\0x0a        all proto 58 2001:4870:610e:2:4::181.13 <-
2406:da17:a1c:b100:8492:c34c:b242:dab1.13   NO_TRAFFIC:NO_TRAFFIC\0x0a  all
proto 17 34.235.242.82.55727 -> 206.210.192.32.123   MULTIPLE:SINGLE
    update compressed count 1
        id: 02000000b7eb7fee creatorid: 00000001
    eof count 1

Running tcpdump on the same file on the 14.0 system:

# tcpdump -r fw2-igb0-1.pcap -nv | less
reading from file fw2-igb0-1.pcap, link-type EN10MB (Ethernet), snapshot length
262144
07:17:25.158773 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pfsync
(240), length 1500)
    10.170.0.1 > 10.170.0.2:  ip-proto-240 1480
07:17:25.158777 IP (tos 0x10, ttl 255, id 0, offset 0, flags [DF], proto pfsync
(240), length 1346)
    10.170.0.1 > 10.170.0.2:  ip-proto-240 1326

-- 
You are receiving this mail because:
You are the assignee for the bug.