Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 23 Jul 2011 17:44:29 +0000
From:      Dmitriy Demidov <dima_bsd@inbox.lv>
To:        ae@FreeBSD.org, freebsd-net@FreeBSD.org
Subject:   Re: kern/143939: [ipfw] [em] ipfw nat and em interface rxcsum problem
Message-ID:  <201107231744.29444.dima_bsd@inbox.lv>
next in thread | raw e-mail | index | archive | help 
Hi,

I have tested this config on today's CURRENT, and i do not got any problems with ipfw nat on em.
Looks like problem is solved - UDP traffic is not damaged anymore!

Thanks.


=====================
em0@pci0:2:9:0: class=0x020000 card=0x30138086 chip=0x100e8086 rev=0x02 hdr=0x00
    vendor     = 'Intel Corporation'
    device     = '82540EM Gigabit Ethernet Controller'
    class      = network
    subclass   = ethernet


em0: <Intel(R) PRO/1000 Legacy Network Connection 1.0.3> port 0xa400-0xa43f mem 0xdb200000-0xdb21ffff irq 21 at device 9.0 on pci2
em0: Ethernet address: 00:20:ed:71:45:67


uname -a
FreeBSD celeron 9.0-CURRENT FreeBSD 9.0-CURRENT #0: Sat Jul 23 16:24:58 EEST 2011     root@celeron:/usr/obj/usr/src/sys/GENERIC  i386


celeron# ifconfig em0
em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        options=209b<RXCSUM,TXCSUM,VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
        ether 00:20:ed:71:45:67
        inet 46.109.209.50 netmask 0xfffff800 broadcast 255.255.255.255
        nd6 options=29<PERFORMNUD,IFDISABLED,AUTO_LINKLOCAL>
        media: Ethernet autoselect (100baseTX <full-duplex>)
        status: active


celeron# ipfw nat 1 show config
ipfw nat 1 config if em0 log deny_in same_ports reset


celeron# ipfw show
00100  24  3398 allow ip from any to any via lo0
00200   0     0 deny ip from any to 127.0.0.0/8
00300   0     0 deny ip from 127.0.0.0/8 to any
00400   0     0 deny ip from any to ::1
00500   0     0 deny ip from ::1 to any
00600   0     0 allow ipv6-icmp from :: to ff02::/16
00700   0     0 allow ipv6-icmp from fe80::/10 to fe80::/10
00800   0     0 allow ipv6-icmp from fe80::/10 to ff02::/16
00900   0     0 allow ipv6-icmp from any to any ip6 icmp6types 1
01000   0     0 allow ipv6-icmp from any to any ip6 icmp6types 2,135,136
01100 918 98707 allow ip from any to any via fxp1
01200 339 54933 nat 1 ip from any to any via em0
01300   0     0 deny ip from any to any
65535   0     0 deny ip from any to any

=====================

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201107231744.29444.dima_bsd>