Date: Tue, 2 Feb 2010 04:22:04 -0500 From: Vadym Chepkov <vchepkov@gmail.com> To: freebsd-pf@FreeBSD.org Subject: pf and enc0 Message-ID: <AF293434-875D-47DD-B78D-75972CD27835@gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I have stumbled on a problem and I am not sure if it's a bug or a = feature. very simple block rules # pfctl -sr | grep block=20 block return in log on bge0 all block return in quick on bge0 from <martians> to any block return out quick on bge0 from any to <martians> bge0 is my WAN interface, I have FreeBSD 6.4 I enabled IPSEC in my kernel options FAST_IPSEC options IPSEC_NAT_T device enc device crypto device cryptodev and all works fine until I do 'ifconfig enc0 up' after that traffic coming through ipsec tunnel is getting rejected and I = can see it's recorded in pflog0 I am not sure why and how to prevent this from happening. Thanks, Vadym Chepkov=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AF293434-875D-47DD-B78D-75972CD27835>