On Mon, Jan 5, 2015 at 9:25 AM, Richard Kojedzinszky <[email protected]> wrote: > Dear OpenBSD team, > > I've made this simple patch to pf, to make optimized tables work inside > anchors. > > Please review it, and apply if appropriate, or suggest a solution to my > simple ruleset, which does not work with 5.6: > > anchor in quick proto icmp { > pass quick from 1.1.1.1 > pass quick from 1.1.1.2 > pass quick from 1.1.1.3 > pass quick from 1.1.1.4 > pass quick from 1.1.1.5 > pass quick from 1.1.1.6 > pass quick from 1.1.1.7 > }
I think this bug is related to one I've reported previously: http://marc.info/?l=openbsd-misc&m=137045729420957&w=2 My initial solution was to make the affected tables persistent (will not work for you), but I later rewrote the ruleset without using anchors and disabled the optimizer.
