freebsd-dev

History

Kristof Provost 2f6c345adf pf: Fix misdetection of forwarding when net.link.bridge.pfil_bridge is set If net.link.bridge.pfil_bridge is set we can end up thinking we're forwarding in pf_test6() because the rcvif and the ifp (output interface) are different. In that case we're bridging though, and the rcvif the the bridge member on which the packet was received and ifp is the bridge itself. If we'd set dir to PF_FWD we'd end up calling ip6_forward() which is incorrect. Instead check if the rcvif is a member of the ifp bridge. (In other words, the if_bridge is the ifp's softc). If that's the case we're not forwarding but bridging. PR: 202351 Reviewed by: eri Differential Revision: https://reviews.freebsd.org/D3534	2015-09-01 19:04:04 +00:00
..
ipfw	Fix packets/bytes accounting on i386.	2015-08-27 07:53:58 +00:00
pf	pf: Fix misdetection of forwarding when net.link.bridge.pfil_bridge is set	2015-09-01 19:04:04 +00:00

Kristof Provost 2f6c345adf pf: Fix misdetection of forwarding when net.link.bridge.pfil_bridge is set

If net.link.bridge.pfil_bridge is set we can end up thinking we're forwarding in
pf_test6() because the rcvif and the ifp (output interface) are different.
In that case we're bridging though, and the rcvif the the bridge member on which
the packet was received and ifp is the bridge itself.
If we'd set dir to PF_FWD we'd end up calling ip6_forward() which is incorrect.

Instead check if the rcvif is a member of the ifp bridge. (In other words, the
if_bridge is the ifp's softc). If that's the case we're not forwarding but
bridging.

PR:	202351
Reviewed by:	eri
Differential Revision:	https://reviews.freebsd.org/D3534

2015-09-01 19:04:04 +00:00

ipfw

Fix packets/bytes accounting on i386.

2015-08-27 07:53:58 +00:00

pf: Fix misdetection of forwarding when net.link.bridge.pfil_bridge is set

2015-09-01 19:04:04 +00:00