Tom Judge wrote:
>
> > Question: Why FW2 does not send ICMP need-fragment-but-DF-set
> > message to HostB ?
>
> If you take a look at icmp_error() in sys/netinet/ip_icmp.c you will
> see that icmp errors are not sent for packets that have been
> previously been decrypted by IPSec. I have a fee
Hi Qing,
version 4 o patch...
fixed deleting interface loopback routes.
Kind regards,
Ingo Flaschbergerdiff -u -r /usr_diff/src/sys/contrib/ipfilter/netinet/ip_pool.c
/router/usr/src/sys/contrib/ipfilter/netinet/ip_pool.c
--- /usr_diff/src/sys/contrib/ipfilter/netinet/ip_pool.c2
Dnia czwartek 16 wrzesień 2010 o 17:08:13 Adrian Chadd napisał(a):
> On 7 September 2010 07:31, Maciej Milewski wrote:
> > The wpa_supplicant.conf isn't complicated:
> > network={
> >ssid="NET5"
> >psk=thelongpskphrase
> > }
> >
> > AFAIR this card was working fine in hostap mode.
On 09/16/2010 09:00 AM, Vladimir Grigorov wrote:
> Greetings all.
>
>
> I have strange problems related to passage icmp need-frag packets, and, as
> result, all packets with packets length greater than output gif MTU.
>
> Network diagram:
>
> [HostA] -- (mtu 1500) --- [FW1] --- ipsec gif mtu 1280
On 7 September 2010 07:31, Maciej Milewski wrote:
> The wpa_supplicant.conf isn't complicated:
> network={
> ssid="NET5"
> psk=thelongpskphrase
> }
>
> AFAIR this card was working fine in hostap mode.
>
> How can I help in fixing the issue?
How long is the PSK? :)
I'm not at all f
The following reply was made to PR kern/146539; it has been noted by GNATS.
From: dfil...@freebsd.org (dfilter service)
To: bug-follo...@freebsd.org
Cc:
Subject: Re: kern/146539: commit references a PR
Date: Thu, 16 Sep 2010 14:55:27 + (UTC)
Author: glebius
Date: Thu Sep 16 14:55:22 2010
Greetings all.
I have strange problems related to passage icmp need-frag packets, and, as
result, all packets with packets length greater than output gif MTU.
Network diagram:
[HostA] -- (mtu 1500) --- [FW1] --- ipsec gif mtu 1280 <-gif1 -- [FW2] - gif0
-> ipsec gif mtu 6100 - [FW3] -(mtu 150
