Near-term pf plans
Markus Gebert
markus.gebert at hostpoint.ch
Mon Aug 24 15:33:14 UTC 2015
Hi Kristof
> On 23.08.2015, at 17:09, Kristof Provost <kp at FreeBSD.org> wrote:
>
> - PR 202351
> This is a panic after ip6 reassembly in pf. We set the rcvif to NULL
> when refragmenting. That seems to go OK execpt when we're refragmenting
> broadcast/multicast packets in the forwarding path. It's not at all
> clear to me how that could happen.
if_bridge wants to forward ipv6 multicasts. pf refragmentation code tries to send out the resulting packets using ip6_forward() which does not handle multicasts, drops the packet and tries to log that fact, which causes the panic.
I’ve updated the PR with some more thoughts about this.
Markus
More information about the freebsd-pf
mailing list