On Dec 18, 2007 8:44 PM, Kian Mohageri <[EMAIL PROTECTED]> wrote: > My guess is that you're re-using a source port and are mismatching an > existing state on the source or destination host (or something in > between) because the state hasn't expired before the new connection > attempt takes place.
My guess is the same and this problem can be usually worked around by setting net.inet.ip.portrange.randomized to 0 on the machine where the connection is originated. It does not fix the bug in the FreeBSD's TCP stack but it helps unless there is a very high outgoing connection rate. Martin _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
