On 1 Sep 2019, at 2:31, László Károlyi wrote:
On 2019-08-31 23:10, Kristof Provost wrote:
On 2019-08-31 22:42:59 (+0200), László Károlyi
wrote:
Hey,
I've installed unbound into a jail to use it as a nameserver. After
setting up PF to allow UDP fragments to the jail's IPv6 address, I
still
Hi,
can I get an explanation/argument as to why, and what implications it
has when I don't enable it?
Cheers,
--
László Károlyi
http://linkedin.com/in/karolyi
On 2019-08-31 23:10, Kristof Provost wrote:
> On 2019-08-31 22:42:59 (+0200), László Károlyi wrote:
>> Hey,
>>
>> I've installed
On 2019-08-31 22:42:59 (+0200), László Károlyi wrote:
> Hey,
>
> I've installed unbound into a jail to use it as a nameserver. After
> setting up PF to allow UDP fragments to the jail's IPv6 address, I still
> saw PF dropping the UDP fragment packages arriving to and from my jail.
> According to
Hey,
I've installed unbound into a jail to use it as a nameserver. After
setting up PF to allow UDP fragments to the jail's IPv6 address, I still
saw PF dropping the UDP fragment packages arriving to and from my jail.
According to the pf.conf readme, the IP header of the fragmented packets
still
