it depends on what template do you use for matching.
the firewall acts before reassembly, so for the fragments you will
not be able to see the port numbers.
cheers
luigi
> I have been using divert sockets for a while sending small (< MTU) UDP
> packets and everything worked fine. Now that the UDP packets are larger
> (>MTU = 1500) and hence fragmentation is taking place there seems to be a
> problem. tcpdump tells me that the fragmented packets arrive but it seems
> that they are never diverted. I say this because after they are received
> recvfrom () never gets the packet. I've done things like play with the
> nbytes field of the recvfrom() fn. without any success. Any
> suggestions, I'm sure its something stupid.
>
>
> Alwyn
> [EMAIL PROTECTED]
>
>
>
>
>
> To Unsubscribe: send mail to [EMAIL PROTECTED]
> with "unsubscribe freebsd-hackers" in the body of the message
>
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
