From owner-freebsd-bugs@FreeBSD.ORG  Sat Aug 19 12:30:25 2006
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
X-Original-To: freebsd-bugs@hub.freebsd.org
Delivered-To: freebsd-bugs@hub.freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A18FC16A4DA
	for <freebsd-bugs@hub.freebsd.org>;
	Sat, 19 Aug 2006 12:30:25 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 258AB43D58
	for <freebsd-bugs@hub.freebsd.org>;
	Sat, 19 Aug 2006 12:30:25 +0000 (GMT)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1])
	by freefall.freebsd.org (8.13.4/8.13.4) with ESMTP id k7JCUO81014987
	for <freebsd-bugs@freefall.freebsd.org>; Sat, 19 Aug 2006 12:30:24 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.13.4/8.13.4/Submit) id k7JCUOT4014985;
	Sat, 19 Aug 2006 12:30:24 GMT (envelope-from gnats)
Date: Sat, 19 Aug 2006 12:30:24 GMT
Message-Id: <200608191230.k7JCUOT4014985@freefall.freebsd.org>
To: freebsd-bugs@FreeBSD.org
From: =?koi8-r?B?+8vV0svPIOHMxcvTwc7E0g==?= <read@midland.com.ua>
Cc: 
Subject: Re: kern/101400: [ipsec] some packets do not pass through IPSEC
	tunnel
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: =?koi8-r?B?+8vV0svPIOHMxcvTwc7E0g==?= <read@midland.com.ua>
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 19 Aug 2006 12:30:25 -0000

The following reply was made to PR kern/101400; it has been noted by GNATS.

From: =?koi8-r?B?+8vV0svPIOHMxcvTwc7E0g==?= <read@midland.com.ua>
To: <bug-followup@FreeBSD.org>, <read@midland.com.ua>
Cc:  
Subject: Re: kern/101400: [ipsec] some packets do not pass through IPSEC tunnel
Date: Sat, 19 Aug 2006 15:21:54 +0300

 This is a multi-part message in MIME format.
 
 ------_=_NextPart_001_01C6C38A.0EBE7739
 Content-Type: text/plain;
 	charset="koi8-r"
 Content-Transfer-Encoding: quoted-printable
 
 After additional testing it was found out, that packets (not only ESP) =
 the certain size are lost all.
 
 If it is ICMP(as example) packet from 1473 to 1479 bytes we have lost =
 it.
 
 Examle:
 
 ping -s 1473 any_ip_address
 
 =20
 
 And I found that after 1480*x, where x=3D1,3,4,5,6... bytes we have the =
 same problem
 
 1480+1473=9A -=9A=9A 1480+1479=9A=9A=9A=9A=9A=9A=9A=9A=9A first range of =
 payload of ICMP packet
 
 1480*2+1473=9A - 1480*2+1479=9A=9A=9A=9A=9A second range of payload of =
 ICMP packet
 
 .........
 
 And so on
 
 =20
 
 If packets bigger or smaller=9A of that range - packets pass
 
 When problem exists I have kernel:
 
 diff -u ./GENERIC ./black
 
 --- ./GENERIC=9A=9A Mon May=9A 1 03:15:12 2006
 
 +++ ./black=9A=9A=9A=9A Sat Aug 19 10:51:09 2006
 
 @@ -22,7 +22,7 @@
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I486_CPU
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I586_CPU
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I686_CPU
 
 -ident=9A=9A=9A=9A=9A=9A=9A=9A=9A GENERIC
 
 +ident=9A=9A=9A=9A=9A=9A=9A=9A=9A black
 
 =20
 
 =9A# To statically compile in device wiring instead of =
 /boot/device.hints
 
 =9A#hints=9A=9A=9A=9A=9A=9A=9A=9A =
 "GENERIC.hints"=9A=9A=9A=9A=9A=9A=9A=9A # Default places to look for =
 devices.
 
 @@ -33,7 +33,7 @@
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SCHED_4BSD=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # 4BSD scheduler
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 PREEMPTION=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A# Enable kernel thread =
 preemption
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 INET=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 InterNETworking
 
 -options=9A=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6 =
 communications protocols
 
 +#options=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6 =
 communications protocols
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 FFS=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Berkeley Fast Filesystem
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SOFTUPDATES=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable FFS soft =
 updates support
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 UFS_ACL=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Support for =
 access control lists
 
 @@ -279,3 +279,41 @@
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A firewire=9A=9A=9A=9A=9A=9A=9A # =
 FireWire bus code
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 sbp=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # SCSI over FireWire (Requires =
 scbus and da)
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 fwe=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Ethernet over FireWire =
 (non-standard!)
 
 +
 
 +#--------------------------------
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A =
 SMP=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A=9A=9A=9A=9A# =
 Symmetric MultiProcessor Kernel
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_VERBOSE
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_VERBOSE_LIMIT=3D100
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_DEFAULT_TO_ACCEPT
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPDIVERT
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A TCP_DROP_SYNFIN
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFILTER
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFILTER_LOG
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A DUMMYNET
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A SC_HISTORY_SIZE=3D1000
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A PANIC_REBOOT_WAIT_TIME=3D120
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A SC_DISABLE_REBOOT
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC_ESP
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC_DEBUG
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_FORWARD
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_FORWARD_EXTENDED
 
 +
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A HZ=3D1000
 
 +
 
 +# pf otions
 
 +device pf
 
 +device pflog
 
 +device pfsync
 
 +
 
 +#ALTQ
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_CBQ=9A=9A=9A=9A=9A=9A=9A # Class =
 Bases Queueing
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_RED=9A=9A=9A=9A=9A=9A=9A # Random =
 Early Detection
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_RIO=9A=9A=9A=9A=9A=9A=9A # RED =
 In/Out
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_HFSC=9A=9A=9A=9A=9A=9A # =
 Hierarchical Packet Scheduler
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_CDNR=9A=9A=9A=9A =9A=9A# Traffic =
 conditioner
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_PRIQ=9A=9A=9A=9A=9A=9A # Priority =
 Queueing
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_NOPCC=9A=9A=9A=9A=9A # Required =
 for SMP build
 
 +
 
 =20
 
 But when I comment some lines from config problem with packets =
 disappear!
 
 diff -u ./GENERIC ./black
 
 --- ./GENERIC=9A=9A Mon May=9A 1 03:15:12 2006
 
 +++ ./black=9A=9A=9A=9A Sat Aug 19 10:51:09 2006
 
 @@ -22,7 +22,7 @@
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I486_CPU
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I586_CPU
 
 =9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A I686_CPU
 
 -ident=9A=9A=9A=9A=9A=9A=9A=9A=9A GENERIC
 
 +ident=9A=9A=9A=9A=9A=9A=9A=9A=9A black
 
 =20
 
 =9A# To statically compile in device wiring instead of =
 /boot/device.hints
 
 =9A#hints=9A=9A=9A=9A=9A=9A=9A=9A =
 "GENERIC.hints"=9A=9A=9A=9A=9A=9A=9A=9A # Default places to look for =
 devices.
 
 @@ -33,7 +33,7 @@
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SCHED_4BSD=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # 4BSD scheduler
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 PREEMPTION=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable kernel thread =
 preemption
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 INET=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 InterNETworking
 
 -options=9A=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6 =
 communications protocols
 
 +#options=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A=9A=9A=9A# IPv6 =
 communications protocols
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 FFS=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Berkeley Fast Filesystem
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SOFTUPDATES=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable FFS soft =
 updates support
 
 =9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 UFS_ACL=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Support for =
 access control lists
 
 @@ -279,3 +279,41 @@
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A firewire=9A=9A=9A=9A=9A=9A=9A # =
 FireWire bus code
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 sbp=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # SCSI over FireWire (Requires =
 scbus and da)
 
 =9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 fwe=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Ethernet over FireWire =
 (non-standard!)
 
 +
 
 +#--------------------------------
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A =
 SMP=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Symmetric MultiProcessor Kernel
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_VERBOSE
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_VERBOSE_LIMIT=3D100
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_DEFAULT_TO_ACCEPT
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPDIVERT
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A TCP_DROP_SYNFIN
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFILTER
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A IPFILTER_LOG
 
 +#options=9A=9A=9A=9A=9A=9A=9A=9A DUMMYNET
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A SC_HISTORY_SIZE=3D1000
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A PANIC_REBOOT_WAIT_TIME=3D120
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A SC_DISABLE_REBOOT
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC_ESP
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPSEC_DEBUG
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_FORWARD
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A IPFIREWALL_FORWARD_EXTENDED
 
 +
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A HZ=3D1000
 
 +
 
 +# pf otions
 
 +device pf
 
 +device pflog
 
 +device pfsync
 
 +
 
 +#ALTQ
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_CBQ=9A=9A=9A=9A=9A=9A=9A # Class =
 Bases Queueing
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_RED=9A=9A=9A=9A=9A=9A=9A # Random =
 Early Detection
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_RIO=9A=9A=9A=9A=9A=9A=9A # RED =
 In/Out
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_HFSC=9A=9A=9A=9A=9A=9A # =
 Hierarchical Packet Scheduler
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_CDNR=9A=9A=9A=9A=9A=9A # Traffic =
 conditioner
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_PRIQ=9A=9A=9A=9A=9A=9A # Priority =
 Queueing
 
 +options=9A=9A=9A=9A=9A=9A=9A=9A ALTQ_NOPCC=9A=9A=9A=9A=9A # Required =
 for SMP build
 
 +
 
 
 ------_=_NextPart_001_01C6C38A.0EBE7739
 Content-Type: text/html;
 	charset="koi8-r"
 Content-Transfer-Encoding: quoted-printable
 
 <html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
 xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
 xmlns=3D"http://www.w3.org/TR/REC-html40">
 
 <head>
 <meta http-equiv=3DContent-Type content=3D"text/html; charset=3Dkoi8-r">
 <meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
 <style>
 <!--
  /* Style Definitions */
  p.MsoNormal, li.MsoNormal, div.MsoNormal
 	{margin:0cm;
 	margin-bottom:.0001pt;
 	font-size:12.0pt;
 	font-family:"Times New Roman";}
 a:link, span.MsoHyperlink
 	{color:blue;
 	text-decoration:underline;}
 a:visited, span.MsoHyperlinkFollowed
 	{color:purple;
 	text-decoration:underline;}
 span.EmailStyle17
 	{mso-style-type:personal-compose;
 	font-family:Arial;
 	color:windowtext;}
 @page Section1
 	{size:595.3pt 841.9pt;
 	margin:2.0cm 42.5pt 2.0cm 3.0cm;}
 div.Section1
 	{page:Section1;}
 -->
 </style>
 
 </head>
 
 <body lang=3DRU link=3Dblue vlink=3Dpurple>
 
 <div class=3DSection1>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>After additional testing it was found out, =
 that
 packets (not only ESP) the certain size are lost =
 all.<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>If it is ICMP(as example) packet from 1473 to =
 1479
 bytes we have lost it.<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>Examle:<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>ping &#8211;s 1473 =
 any_ip_address<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>And I found that after =
 1480*x</span></font><font
 size=3D2 face=3DArial><span lang=3DUK =
 style=3D'font-size:10.0pt;font-family:Arial'>, </span></font><font
 size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:10.0pt;font-family:Arial'>where
 x=3D1</span></font><font size=3D2 face=3DArial><span lang=3DUK =
 style=3D'font-size:10.0pt;
 font-family:Arial'>,3,4,5,6&#8230;</span></font><font size=3D2 =
 face=3DArial><span
 lang=3DEN-US style=3D'font-size:10.0pt;font-family:Arial'> bytes we have =
 the same
 problem<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>1480+1473=9A -=9A=9A =
 1480+1479=9A=9A=9A=9A=9A=9A=9A=9A=9A first range of
 payload of ICMP packet<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>1480*2+1473=9A - 1480*2+1479=9A=9A=9A=9A=9A =
 second range of
 payload of ICMP packet<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>&#8230;&#8230;&#8230;<o:p></o:p></span></font><=
 /p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>And so on<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>If packets bigger or smaller=9A of that range =
 - packets
 pass<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>When problem exists I have =
 kernel:<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>diff -u ./GENERIC =
 ./black<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>--- ./GENERIC=9A=9A Mon May=9A 1 03:15:12 =
 2006<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+++ ./black=9A=9A=9A=9A Sat Aug 19 10:51:09 =
 2006<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -22,7 +22,7 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I486_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I586_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I686_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>-ident=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 GENERIC<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+ident=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 black<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9A# To statically compile in device wiring =
 instead of
 /boot/device.hints<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9A#hints=9A=9A=9A=9A=9A=9A=9A=9A =
 &quot;GENERIC.hints&quot;=9A=9A=9A=9A=9A=9A=9A=9A #
 Default places to look for devices.<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -33,7 +33,7 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SCHED_4BSD=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # 4BSD
 scheduler<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 PREEMPTION=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A# Enable
 kernel thread preemption<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 INET=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A #
 InterNETworking<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>-options=9A=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6
 communications protocols<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6
 communications protocols<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 FFS=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Berkeley
 Fast Filesystem<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SOFTUPDATES=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable FFS
 soft updates support<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 UFS_ACL=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Support for
 access control lists<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -279,3 +279,41 =
 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 firewire=9A=9A=9A=9A=9A=9A=9A # FireWire bus =
 code<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 sbp=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # SCSI over FireWire
 (Requires scbus and da)<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 fwe=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Ethernet over
 FireWire (non-standard!)<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#--------------------------------<o:p></o:p></=
 span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SMP=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A=9A=9A=9A=9A# =
 Symmetric
 MultiProcessor Kernel<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_VERBOSE<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_VERBOSE_LIMIT=3D100<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_DEFAULT_TO_ACCEPT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPDIVERT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 TCP_DROP_SYNFIN<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFILTER<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFILTER_LOG<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 DUMMYNET<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SC_HISTORY_SIZE=3D1000<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 PANIC_REBOOT_WAIT_TIME=3D120<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SC_DISABLE_REBOOT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC_ESP<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC_DEBUG<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_FORWARD<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_FORWARD_EXTENDED<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 HZ=3D1000<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+# pf otions<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pf<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pflog<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pfsync<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#ALTQ<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_CBQ=9A=9A=9A=9A=9A=9A=9A # Class Bases
 Queueing<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_RED=9A=9A=9A=9A=9A=9A=9A # Random Early
 Detection<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_RIO=9A=9A=9A=9A=9A=9A=9A # RED In/Out<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_HFSC=9A=9A=9A=9A=9A=9A # Hierarchical
 Packet Scheduler<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_CDNR=9A=9A=9A=9A =9A=9A# Traffic
 conditioner<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_PRIQ=9A=9A=9A=9A=9A=9A # Priority =
 Queueing<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_NOPCC=9A=9A=9A=9A=9A # Required for SMP
 build<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>But when I comment some lines from config =
 problem
 with packets disappear!<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>diff -u ./GENERIC =
 ./black<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>--- ./GENERIC=9A=9A Mon May=9A 1 03:15:12 =
 2006<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+++ ./black=9A=9A=9A=9A Sat Aug 19 10:51:09 =
 2006<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -22,7 +22,7 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I486_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I586_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Acpu=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 I686_CPU<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>-ident=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 GENERIC<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+ident=9A=9A=9A=9A=9A=9A=9A=9A=9A =
 black<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'><o:p>&nbsp;</o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9A# To statically compile in device wiring =
 instead of
 /boot/device.hints<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9A#hints=9A=9A=9A=9A=9A=9A=9A=9A =
 &quot;GENERIC.hints&quot;=9A=9A=9A=9A=9A=9A=9A=9A #
 Default places to look for devices.<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -33,7 +33,7 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SCHED_4BSD=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # 4BSD
 scheduler<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 PREEMPTION=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable
 kernel thread preemption<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 INET=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A #
 InterNETworking<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>-options=9A=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # IPv6
 communications protocols<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A =
 INET6=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A =9A=9A=9A=9A# IPv6
 communications protocols<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 FFS=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Berkeley
 Fast Filesystem<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 SOFTUPDATES=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Enable FFS
 soft updates support<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Aoptions=9A=9A=9A=9A=9A=9A=9A =
 UFS_ACL=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Support for
 access control lists<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>@@ -279,3 +279,41 =
 @@<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 firewire=9A=9A=9A=9A=9A=9A=9A # FireWire bus =
 code<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 sbp=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # SCSI over FireWire
 (Requires scbus and da)<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>=9Adevice=9A=9A=9A=9A=9A=9A=9A=9A =
 fwe=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # Ethernet over
 FireWire (non-standard!)<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#--------------------------------<o:p></o:p></=
 span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SMP=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A=9A # =
 Symmetric
 MultiProcessor Kernel<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_VERBOSE<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_VERBOSE_LIMIT=3D100<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_DEFAULT_TO_ACCEPT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPDIVERT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 TCP_DROP_SYNFIN<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFILTER<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFILTER_LOG<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DDE =
 style=3D'font-size:10.0pt;
 font-family:Arial'>+#options=9A=9A=9A=9A=9A=9A=9A=9A =
 DUMMYNET<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SC_HISTORY_SIZE=3D1000<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 PANIC_REBOOT_WAIT_TIME=3D120<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 SC_DISABLE_REBOOT<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC_ESP<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPSEC_DEBUG<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_FORWARD<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 IPFIREWALL_FORWARD_EXTENDED<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 HZ=3D1000<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+# pf otions<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pf<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pflog<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+device pfsync<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+#ALTQ<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_CBQ=9A=9A=9A=9A=9A=9A=9A # Class Bases
 Queueing<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_RED=9A=9A=9A=9A=9A=9A=9A # Random Early
 Detection<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_RIO=9A=9A=9A=9A=9A=9A=9A # RED In/Out<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_HFSC=9A=9A=9A=9A=9A=9A # Hierarchical
 Packet Scheduler<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_CDNR=9A=9A=9A=9A=9A=9A # Traffic
 conditioner<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_PRIQ=9A=9A=9A=9A=9A=9A # Priority =
 Queueing<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+options=9A=9A=9A=9A=9A=9A=9A=9A =
 ALTQ_NOPCC=9A=9A=9A=9A=9A # Required for SMP
 build<o:p></o:p></span></font></p>
 
 <p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
 style=3D'font-size:
 10.0pt;font-family:Arial'>+<o:p></o:p></span></font></p>
 
 </div>
 
 </body>
 
 </html>
 
 ------_=_NextPart_001_01C6C38A.0EBE7739--