urpf-failed & ipv6
Reinhard Haller
reinhard.haller at interactive-net.de
Sat Jul 3 13:42:15 UTC 2010
Hi,
I recently discovered a strange behavior on my border router.
In the following ruleset:
block log all
block in log quick from urpf-failed to any
pass quick on $int_if inet6 proto udp from any to any port ripng
block drop on !$int_if inet6 proto udp from any to any port ripng
all occurrences of
fe80::<mac-address>%$int_if -> ff02::9
were blocked by the urpf-failed rule.
Any suggestuions why this happens?
Thanks Reinhard
More information about the freebsd-pf
mailing list