[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bug in ipnat?

mag@tech.sibal.ru wrote:

> Probably there are bugs in ipnat.
> # ipf -V
> ipf: IP Filter: v3.3.18 (184)
> Kernel: IP Filter: v3.3.18

> # traceroute -n -q 1 www.ru
> traceroute to www.ru (, 30 hops max, 40 byte packets
>  1  0.180 ms
>  2  *
>  3  *

    You will want to research the misc@openbsd.org mailing list archives for the (correct) details, but I believe
this is a known issue with ipf versions prior to 3.3.20.  Something to do with the TTL not being properly
decremented (or incremented?)  I'll leave that as an exercise for the interested reader.

PS:  This question would probably be better suited for misc.

R. Scott McEachern, Network Administrator
J&A Media Services, Inc.
300 John St., Suite 500, Thornhill, ON, CA  L3T 5W4
tel:905-881-6902  fax:905-881-6945