At this point it appears that openbsd security configurations may result in a los of UDP ICMP traffic to all hosts on a segment. If possible please clarify if any of the following are required foe the proper operation of NTP/CAPWAP on a broadcast/multicast segment.
[patrick@bully ~]$sysctl | grep multi net.inet.ip.multipath=0 net.inet6.ip6.multipath=0 net.inet6.ip6.multicast_mtudisc=0 [patrick@bully ~]$sysctl | grep 'net.inet' | grep '=0' net.inet.ip.forwarding=0 net.inet.ip.sourceroute=0 net.inet.ip.directed-broadcast=0 net.inet.ip.encdebug=0 net.inet.ip.ipsec-soft-allocs=0 net.inet.ip.ipsec-allocs=0 net.inet.ip.ipsec-soft-bytes=0 net.inet.ip.ipsec-bytes=0 net.inet.ip.ifq.len=0 net.inet.ip.ifq.drops=0 net.inet.ip.mforwarding=0 net.inet.ip.multipath=0 net.inet.ip.arpqueued=0 net.inet.icmp.maskrepl=0 net.inet.icmp.bmcastecho=0 net.inet.icmp.rediraccept=0 net.inet.ipip.allow=0 net.inet.tcp.ackonpush=0 net.inet.tcp.ecn=0 net.inet.tcp.always_keepalive=0 net.inet.gre.allow=0 net.inet.gre.wccp=0 net.inet.mobileip.allow=0 net.inet.etherip.allow=0 net.inet.ipcomp.enable=0 net.inet.carp.preempt=0 Regards Patrick
