thr3ads.net - freebsd stable - synproxy state does not work on FreeBSD 7.1-PRERELEASE [Dec 2008]

If this information is useful, please help other people find it:
Share via:

Vladimir Ermakov

2008-Dec-02 08:51 UTC

synproxy state does not work on FreeBSD 7.1-PRERELEASE

crossmessage 
http://lists.freebsd.org/pipermail/freebsd-pf/2008-November/004881.html

hello
	
I tried to rule with `synproxy state`

uname
FreeBSD 7.1-PRERELEASE FreeBSD 7.1-PRERELEASE #0: Wed Oct 29 12:47:36
UTC 2008  (amd64 & i386 arch)
the `synproxy state` is not working (web-browser does not receive the html-page)

uname
FreeBSD 7.0-RELEASE GENERIC (amd64 & i386 arch)
the `synproxy state` is working

# cat /etc/pf.conf
pass on em0 proto tcp from any to 192.168.0.1 port 80 synproxy state

	
to all, please check and confirm or deny

/Vladimir Ermakov

Vladimir Ermakov

2008-Dec-02 09:08 UTC

head link

synproxy state does not work on FreeBSD 7.1-PRERELEASE

Jesper Wallin wrote:>  think this is because you also do filtering on the loopback interface and
therefore block the initial handshake. Try with "set skip on lo0". :-)
>
>
> Regards,
> Jesper
>
>
>   
Thank you, but I did not use blocking rules.

/Vladimir Ermakov

Vladimir Ermakov

2008-Dec-04 07:24 UTC

head link

synproxy state does not work on FreeBSD 7.1-PRERELEASE

problem is fixed in OpenBSD 4.4
http://www.openbsd.org/plus44.html

/Vladimir Ermakov

freebsd stable - Dec 2008 - synproxy state does not work on FreeBSD 7.1-PRERELEASE

synproxy state does not work on FreeBSD 7.1-PRERELEASE

synproxy state does not work on FreeBSD 7.1-PRERELEASE

synproxy state does not work on FreeBSD 7.1-PRERELEASE