From owner-freebsd-pf@FreeBSD.ORG Mon Sep 1 13:00:57 2014 Return-Path: Delivered-To: freebsd-pf@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id CC7EB8F4 for ; Mon, 1 Sep 2014 13:00:57 +0000 (UTC) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id B3C0318B0 for ; Mon, 1 Sep 2014 13:00:57 +0000 (UTC) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.14.9/8.14.9) with ESMTP id s81D0v1Z015445 for ; Mon, 1 Sep 2014 13:00:57 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 177808] [pf] [patch] route-to rule forwarding traffic inspite of state limit Date: Mon, 01 Sep 2014 13:00:57 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 9.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: commit-hook@freebsd.org X-Bugzilla-Status: In Discussion X-Bugzilla-Priority: Normal X-Bugzilla-Assigned-To: freebsd-pf@FreeBSD.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Sep 2014 13:00:57 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=177808 --- Comment #3 from commit-hook@freebsd.org --- A commit references this bug: Author: glebius Date: Mon Sep 1 13:00:46 UTC 2014 New revision: 270928 URL: http://svnweb.freebsd.org/changeset/base/270928 Log: Explicitly free packet on PF_DROP, otherwise a "quick" rule with "route-to" may still forward it. PR: 177808 Submitted by: Kajetan Staszkiewicz Sponsored by: InnoGames GmbH Changes: head/sys/netpfil/pf/pf.c -- You are receiving this mail because: You are the assignee for the bug. From owner-freebsd-pf@FreeBSD.ORG Mon Sep 1 13:01:24 2014 Return-Path: Delivered-To: freebsd-pf@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id C519EA25 for ; Mon, 1 Sep 2014 13:01:24 +0000 (UTC) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AC6101952 for ; Mon, 1 Sep 2014 13:01:24 +0000 (UTC) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.14.9/8.14.9) with ESMTP id s81D1Okn023814 for ; Mon, 1 Sep 2014 13:01:24 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-pf@FreeBSD.org Subject: [Bug 177808] [pf] [patch] route-to rule forwarding traffic inspite of state limit Date: Mon, 01 Sep 2014 13:01:24 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: kern X-Bugzilla-Version: 9.1-RELEASE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Only Me X-Bugzilla-Who: glebius@FreeBSD.org X-Bugzilla-Status: Needs MFC X-Bugzilla-Priority: Normal X-Bugzilla-Assigned-To: glebius@FreeBSD.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_status cc assigned_to Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 01 Sep 2014 13:01:24 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=177808 Gleb Smirnoff changed: What |Removed |Added ---------------------------------------------------------------------------- Status|In Discussion |Needs MFC CC| |glebius@FreeBSD.org Assignee|freebsd-pf@FreeBSD.org |glebius@FreeBSD.org -- You are receiving this mail because: You are the assignee for the bug. From owner-freebsd-pf@FreeBSD.ORG Sat Sep 6 21:27:45 2014 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 89BB46F2 for ; Sat, 6 Sep 2014 21:27:45 +0000 (UTC) Received: from mail-we0-x22d.google.com (mail-we0-x22d.google.com [IPv6:2a00:1450:400c:c03::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 2392418A5 for ; Sat, 6 Sep 2014 21:27:44 +0000 (UTC) Received: by mail-we0-f173.google.com with SMTP id t60so13214797wes.4 for ; Sat, 06 Sep 2014 14:27:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=date:subject:message-id:from:to:mime-version:content-type :content-transfer-encoding; bh=4rTn/D0QcLRTfRJQSfnaDn/gBsk1LDt0ZZSb3qJlg5s=; b=RySnTIuiZqQvyNaz0QyWQxEr+oY4/27kNN5Lg76MaZRSQTb0jrD8UnHdNfODBAf52P 9cCuH8+BKQNxxNdZZuE5o3vrOlIfPIbFzCBJJqwPyk8FD/M8/SZjBevhYOftk3G94KMx UvbWOwUsJj2XQ03ZYu+EvXUYW4A83xuj+uO0qD0J866tLAd9x/jCApCW0L9Qn+wOAXGQ bpb/uPcGQsE5fnG+XxrLUrLjAJroImI4LFrrqWx0yv0UclUOUAqQ23CjfRbyWrwc9PCw eQ62ErbbLvJANBqqvtZ9vAXYI+G0U3xO81R3aoBzMgwqGCLJgFuZUPZesOY1PXaBGaYG tGjQ== X-Received: by 10.180.91.40 with SMTP id cb8mr12279471wib.45.1410038863168; Sat, 06 Sep 2014 14:27:43 -0700 (PDT) Received: from 10.24.28.235 ([197.77.237.96]) by mx.google.com with ESMTPSA id pm6sm5710501wjb.36.2014.09.06.14.27.39 for (version=TLSv1 cipher=RC4-SHA bits=128/128); Sat, 06 Sep 2014 14:27:42 -0700 (PDT) Date: Sat, 06 Sep 2014 23:27:33 +0200 Subject: Information about costs Message-ID: From: Vince To: freebsd-pf@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: base64 X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 06 Sep 2014 21:27:45 -0000 aGl5IEkgd291bGQgbGlrZSB0byBrbm93IGlmIHRoZSBtb250aGx5IGluc3RhbGxtZW50IHdpbGwg aW5jcmVhc2U/IEFuZCBpZiBzbyB3aHkgYW5kIGhvdyBwbGVhc2Ugc2VuZCBtZSBhIGNvbXBsZXRl IGJyb3VjaGVyIG9mIHByaWNlIGluY3JlYXNlIG9mIGFsbCB0aGUgY2FyIGFkdmVydGlzZWQgaWYg dGhlIGFyZSBhbnkuIQo=