I just added a rule in my firewall that looks like this:
scrub in on $fxp1 all and it crashed right away. I reboot it and after fscking (80GB harddrive, so it took a while), it crashed again after telling me it was activating pf. Now I remove all the network interfaces (3; 2 in bridge mode and one with IP for management). And after fscking this it does not crash and I can remove the failing rule and after that it works again. Since we are highly depending on this firewall I have problems testing further (I would test with just a 'scrub in all' rule but there was no time to lose). I have no more time today for checking, but I think I got me a crash dump to look at, but I want to know if anyone has seen anything like this before? I'm running OpenBSD 3.1 with roughly 120 rules on a P4 machine that handles high traffic over the bridge (2 intel EEPro cards). regards Thorbj�rn
