Hi! > On 12/5/2014 6:09 PM, Martin Hanson wrote: > > Has any important bugs been fixed in PF on OpenBSD since the current > > port in FreeBSD that actually makes the current PF in FreeBSD > > "dangerous" to run with? > > FreeBSD's pf is broken for IPv6. Its lack of fragment support means a > FreeBSD breaks EDNS0 and other large-packet protocols that rely on > fragment headers.
This was fixed recently as far as I understand. Have a look at https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=179392 and https://svnweb.freebsd.org/changeset/base/274709 -- [email protected] +49 171 3101372 6 years to go ! _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[email protected]"
