polachok's projects / dragonfly.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a40c002) | patch
PF - Must set FW_MBUF_REDISPATCH when translating input packets
authorMatthew Dillon <dillon@apollo.backplane.com>
Sun, 23 Aug 2009 10:19:02 +0000 (03:19 -0700)
committerMatthew Dillon <dillon@apollo.backplane.com>
Sun, 23 Aug 2009 10:57:01 +0000 (03:57 -0700)
commit95129b44e68f1ab17826107eec71602c4170014a
treeb0dfbc6c2d442f55d5968c1d933e009eda5dee25tree | snapshot
parenta40c002386290d36f60aeed95e3f98d21a346c0bcommit | diff
PF - Must set FW_MBUF_REDISPATCH when translating input packets

* If a TCP or UDP input packet is translated and happens to be
  destined to the local host, FW_MBUF_REDISPATCH must be set
  or it may end up on the wrong protocol stack and generate a
  (e.g.) TCP RST.

* This fixes 'nat' rulesets, and probably others.
sys/net/pf/pf.c diff | blob | blame | history
polachok's DragonFly repo