Hi, I'm having a problem talking through an OpenBSD 3.8 bridging firewall (using pf) to a Solaris 10 webserver. Every request takes about 4.5 seconds to complete, and when I set debug to loud in pf, I get this on the console:
pf: BAD state: TCP 163.1.203.78:50661 1.1.1.1:50661 2.2.2.2:80 [lo=2543330857 high=2543330869 win=49232 modulator=0] [lo=25270494 high=25319726 win=1460 modulator=0] 4:4 PA seq=2543330857 ack=25270494 len=1128 ackskew=0 pkts=3:2 dir=in,fwd pf: State failure on: 1 | (IP addresses changed) There are more "BAD state" messages logged, but they are for a FIN|ACK packet, then a few RSTs. Can someone please help me track this down? Many thanks for any assistance - Ian -- Ian Chard, Unix & Network Administrator | E: [EMAIL PROTECTED] Systems and Electronic Resources Service | T: 80587 / (01865) 280587 Oxford University Library Services | F: (01865) 242287
