From owner-freebsd-pf@FreeBSD.ORG  Mon Nov  8 11:07:02 2010
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 889B91065674
	for <freebsd-pf@FreeBSD.org>; Mon,  8 Nov 2010 11:07:02 +0000 (UTC)
	(envelope-from owner-bugmaster@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
	[IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id 757228FC23
	for <freebsd-pf@FreeBSD.org>; Mon,  8 Nov 2010 11:07:02 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id oA8B72XD088164
	for <freebsd-pf@FreeBSD.org>; Mon, 8 Nov 2010 11:07:02 GMT
	(envelope-from owner-bugmaster@FreeBSD.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id oA8B71Tr088162
	for freebsd-pf@FreeBSD.org; Mon, 8 Nov 2010 11:07:01 GMT
	(envelope-from owner-bugmaster@FreeBSD.org)
Date: Mon, 8 Nov 2010 11:07:01 GMT
Message-Id: <201011081107.oA8B71Tr088162@freefall.freebsd.org>
X-Authentication-Warning: freefall.freebsd.org: gnats set sender to
	owner-bugmaster@FreeBSD.org using -f
From: FreeBSD bugmaster <bugmaster@FreeBSD.org>
To: freebsd-pf@FreeBSD.org
Cc: 
Subject: Current problem reports assigned to freebsd-pf@FreeBSD.org
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Nov 2010 11:07:02 -0000

Note: to view an individual PR, use:
  http://www.freebsd.org/cgi/query-pr.cgi?pr=(number).

The following is a listing of current problems submitted by FreeBSD users.
These represent problem reports covering all versions including
experimental development code and obsolete releases.


S Tracker      Resp.      Description
--------------------------------------------------------------------------------
o kern/148290  pf         [pf] "sticky-address" option of Packet Filter (PF) blo
o kern/148260  pf         [pf] [patch] pf rdr incompatible with dummynet
o kern/147789  pf         [pf] Firewall PF no longer drops connections by sendin
o kern/146832  pf         [pf] "(self)" not always matching all local IPv6 addre
o kern/143543  pf         [pf] [panic] PF route-to causes kernel panic
o bin/143504   pf         [patch] outgoing states are not killed by authpf(8)
o conf/142961  pf         [pf] No way to adjust pidfile in pflogd
o conf/142817  pf         [patch] etc/rc.d/pf: silence pfctl
o kern/141905  pf         [pf] [panic] pf kernel panic on 7.2-RELEASE with empty
o kern/140697  pf         [pf] pf behaviour changes - must be documented
o kern/137982  pf         [pf] when pf can hit state limits, random IP failures 
o kern/136781  pf         [pf] Packets appear to drop with pf scrub and if_bridg
o kern/135948  pf         [pf] [gre] pf not natting gre protocol
o kern/135162  pf         [pfsync] pfsync(4) not usable with GENERIC kernel
o kern/134996  pf         [pf] Anchor tables not included when pfctl(8) is run w
o kern/133732  pf         [pf] max-src-conn issue
o kern/132769  pf         [pf] [lor] 2 LOR's with pf task mtx / ifnet and  rtent
f kern/132176  pf         [pf] pf stalls connection when using route-to [regress
o conf/130381  pf         [rc.d] [pf] [ip6] ipv6 not fully configured when pf st
o kern/129861  pf         [pf] [patch] Argument names reversed in pf_table.c:_co
o kern/127920  pf         [pf] ipv6 and synproxy don't play well together
o conf/127814  pf         [pf] The flush in pf_reload in /etc/rc.d/pf does not w
o kern/127439  pf         [pf] deadlock in pf
f kern/127345  pf         [pf] Problem with PF on FreeBSD7.0 [regression]
o kern/127121  pf         [pf] [patch] pf incorrect log priority
o kern/127042  pf         [pf] [patch] pf recursion panic if interface group is 
o kern/125467  pf         [pf] pf keep state bug while handling sessions between
s kern/124933  pf         [pf] [ip6] pf does not support (drops) IPv6 fragmented
o kern/124364  pf         [pf] [panic] Kernel panic with pf + bridge
o kern/122773  pf         [pf] pf doesn't log uid or pid when configured to
o kern/122014  pf         [pf] [panic] FreeBSD 6.2 panic in pf
o kern/120281  pf         [pf] [request] lost returning packets to PF for a rdr 
o kern/120057  pf         [pf] [patch] Allow proper settings of ALTQ_HFSC. The c
o bin/118355   pf         [pf] [patch] pfctl(8) help message options order false
o kern/114567  pf         [pf] [lor] pf_ioctl.c + if.c
o kern/114095  pf         [carp] carp+pf delay with high state limit
o kern/111220  pf         [pf] repeatable hangs while manipulating pf tables
s conf/110838  pf         [pf] tagged parameter on nat not working on FreeBSD 5.
o kern/103283  pf         pfsync fails to sucessfully transfer some sessions
o kern/103281  pf         pfsync reports bulk update failures
o kern/93825   pf         [pf] pf reply-to doesn't work
o sparc/93530  pf         [pf] Incorrect checksums when using pf's route-to on s
o kern/92949   pf         [pf] PF + ALTQ problems with latency
o bin/86635    pf         [patch] pfctl(8): allow new page character (^L) in pf.
o kern/82271   pf         [pf] cbq scheduler cause bad latency

45 problems total.


From owner-freebsd-pf@FreeBSD.ORG  Tue Nov  9 07:04:28 2010
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 7E3EF106566B
	for <freebsd-pf@freebsd.org>; Tue,  9 Nov 2010 07:04:28 +0000 (UTC)
	(envelope-from fbsdq@peterk.org)
Received: from poshta.pknet.net (poshta.pknet.net [216.241.167.213])
	by mx1.freebsd.org (Postfix) with ESMTP id 232328FC1D
	for <freebsd-pf@freebsd.org>; Tue,  9 Nov 2010 07:04:27 +0000 (UTC)
Received: (qmail 51691 invoked by uid 89); 9 Nov 2010 06:37:46 -0000
Received: from localhost (HELO smtp.pknet.net) (127.0.0.1)
	by poshta.pknet.net with ESMTP; 9 Nov 2010 06:37:46 -0000
Received: from 216.241.167.208
	(SquirrelMail authenticated user fbsdq@peterk.org)
	by smtp.pknet.net with HTTP; Mon, 8 Nov 2010 23:37:46 -0700
Message-ID: <33f0d4dc72bcfc27f08902dec7e0bc33.squirrel@smtp.pknet.net>
In-Reply-To: <32AB5C9615CC494997D9ABB1DB12783C024C6FC08E@SJ-EXCH-1.adaranet.com>
References: <32AB5C9615CC494997D9ABB1DB12783C024C6FC08E@SJ-EXCH-1.adaranet.com>
Date: Mon, 8 Nov 2010 23:37:46 -0700
From: "Peter" <fbsdq@peterk.org>
To: "Ricky  Charlet" <RCharlet@adaranet.com>
User-Agent: SquirrelMail/1.4.21
MIME-Version: 1.0
Content-Type: text/plain;charset=iso-8859-1
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Cc: "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org>
Subject: Re: shy about borrowing
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Nov 2010 07:04:28 -0000

> Howdy,
>
> altq on gif10 cbq qlimit 300 bandwidth 45Mb queue { queue1, queue2 }
> queue queue1 qlimit 300  bandwidth 1Mb priority 7 cbq  (default)
> queue queue2 qlimit 300 bandwidth 10Mb priority 1 cbq(borrow red)
> pass out quick on gif10 inet proto tcp no state queue queue2
>
> If I run traffic through my queue2, it runs about 12Mb and `pfctl -vvsq`
> does show some borrows. But even though it is borrowing some, why does it
> not borrow up to my 45Mb root queue limit?
>
>
> ---
> Ricky Charlet
> Adara Networks
> USA 408-433-4942
>
>

I could not get it to borrow, not even on OpenBSD [at that time, followed
their pf faq examples, and OpenBSD also did not borrow]

http://www.mail-archive.com/freebsd-pf@freebsd.org/msg04052.html.
http://lists.freebsd.org/pipermail/freebsd-pf/2007-February/003021.html

After many tests, I could never get it to borrow properly from parent and
finally went with hfsc, which works just as it should.  It was almost
pretty much %s/cbq/hfsc/g to get it working.

]Peter[