On Mon, Jul 11, 2005 at 07:57:33AM -0400, David Hill wrote:
> I reloaded the rules manually with pfctl -F rules -f /etc/pf.conf after
> removing set skip on sis0. Nat still did not work. Rebooting fixed it.
Can you try the diff below (against pfctl only, only requires rebuild of
pfctl, not the kernel)?
It's pointless to call DIOCCLRIFFLAG with a zero pfiio_flags.
Daniel
Index: pfctl.c
===================================================================
RCS file: /cvs/src/sbin/pfctl/pfctl.c,v
retrieving revision 1.242
diff -u -r1.242 pfctl.c
--- pfctl.c 13 Jun 2005 20:17:25 -0000 1.242
+++ pfctl.c 11 Jul 2005 12:23:44 -0000
@@ -271,6 +271,7 @@
if ((opts & PF_OPT_NOACTION) == 0) {
bzero(&pi, sizeof(pi));
+ pi.pfiio_flags = PFI_IFLAG_SKIP;
if (ioctl(dev, DIOCCLRIFFLAG, &pi))
err(1, "DIOCCLRIFFLAG");
