Diffusion FreeBSD doc repository 4d2455bbfbd5

When IPSEC is configured according to the Handbook[1], pf fails
4d2455bbfbd5
Actions

Description

When IPSEC is configured according to the Handbook[1], pf fails
to track connection state properly, because it does not see
packets coming from the tunneled interface to gif(4). Rebuilding
with IPSEC_FILTERGIF fixes the problem.

According to mlaier@ we cannot change GENERIC for this, but it's
ok to document the requirement for IPSEC_FILTERGIF. Add a note
to this effect.

[1] http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ipsec.html

PR: kern/97057
Submitted by: Dmitry Andrianov <freebsd@dima.spb.ru>
Suggested by: mlaier
Reviewed by: remko

Details

Provenance

Giorgos Keramidas

Authored on Jun 26 2006, 1:06 PM

Parents

R9:5d0d47d90604: - Add my PGP key

Branches

Unknown

Tags

Unknown

Event Timeline

Giorgos Keramidas <keramida@FreeBSD.org> committed R9:4d2455bbfbd5: When IPSEC is configured according to the Handbook[1], pf fails (authored by Giorgos Keramidas <keramida@FreeBSD.org>).Jun 26 2006, 1:06 PM

Changes (1)

Path

Size

en_US.ISO8859-1/

books/

handbook/

security/

chapter.sgml

R9:4d2455bbfbd5

View Options

en_US.ISO8859-1/books/handbook/security/chapter.sgml