using interface groups in pf tables stopped working in 13.0-RELEASE
Peter Ankerstål
peter at pean.org
Tue Apr 27 09:47:54 UTC 2021
>>>
>> I can
>> It looks like there’s some confusion inside pfctl about the network group. It ends up in pfctl_parser.c, append_addr_host(), and expects an AF_INET or AF_INET6, but instead gets an AF_LINK.
>>
>> It’s probably related to 250994 or possibly d2568b024da283bd2b88a633eecfc9abf240b3d8.
>> Either way it’s pretty deep in a part of the pfctl code I don’t much like. I’ll try to poke at it some more over the weekend.
>>
> It should be fixed as of d5b08e13dd6beb3436e181ff1f3e034cc8186584 in main. I’ll MFC that in about a week, and then it’ll turn up in 13.1 in the fullness of time.
Nice thanks.
I also seem to have problem even in anchors (not while using tables). But maybe this will also be fixed by this change.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2747 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20210427/09bcbea6/attachment.bin>
More information about the freebsd-stable
mailing list