From nobody@FreeBSD.org  Mon Aug 21 12:48:07 2006
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 815C316A4E0
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 21 Aug 2006 12:48:07 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3E83143D5D
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 21 Aug 2006 12:48:07 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id k7LCm6YT036511
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 21 Aug 2006 12:48:06 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id k7LCm6Gj036510;
	Mon, 21 Aug 2006 12:48:06 GMT
	(envelope-from nobody)
Message-Id: <200608211248.k7LCm6Gj036510@www.freebsd.org>
Date: Mon, 21 Aug 2006 12:48:06 GMT
From: Alexander Shkurko <read@midland.com.ua>
To: freebsd-gnats-submit@FreeBSD.org
Subject: Some packets do not pass through network interface
X-Send-Pr-Version: www-2.3

>Number:         102344
>Category:       kern
>Synopsis:       [ipf] Some packets do not pass through network interface
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    gavin
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Aug 21 12:50:14 GMT 2006
>Closed-Date:    Thu Aug 28 16:42:58 UTC 2008
>Last-Modified:  Thu Aug 28 16:42:58 UTC 2008
>Originator:     Alexander Shkurko
>Release:        FreeBSD 6.1
>Organization:
>Environment:
testfree# uname -a
testfree# uname -a
FreeBSD testfree.trade.dom 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Mon Aug 21 15:11:29 EEST 2006     andrew@testfree.trade.dom:/usr/src/sys/i386/compile/black  i386
>Description:
Packets of some size do not pass through network interface.

After some experiment's i found size of ICMP packet's that do not pass.
  Size of payload, range 
  1473 bytes - 1479 bytes
  2953 bytes - 2959 bytes
  4433 bytes - 4439 bytes
  5913 bytes - 5919 bytes

So, we have formula of size of problem payloads:
1473+x*1480  - 1479+x*1480, where x=1,2,3,4,5,6...

I have kernel:

testfree# diff -u /usr/src/sys/i386/conf/GENERIC /usr/src/sys/i386/conf/black
--- /usr/src/sys/i386/conf/GENERIC      Mon May  1 03:15:12 2006
+++ /usr/src/sys/i386/conf/black        Mon Aug 21 14:52:37 2006
@@ -279,3 +279,6 @@
 device         firewire        # FireWire bus code
 device         sbp             # SCSI over FireWire (Requires scbus and da)
 device         fwe             # Ethernet over FireWire (non-standard!)
+
+options         IPFILTER

>How-To-Repeat:
Add to "generic" kernel support of IPFILTER,install this kernel,reboot, and ping any IP address with payload of 1475 bytes:
ping -s 1475 any_ip_address

>Fix:
Disable support of IPFILTER and problem disappear.
>Release-Note:
>Audit-Trail:

From: Sergey Svishchev <svs@ropnet.ru>
To: bug-followup@FreeBSD.org, read@midland.com.ua
Cc:  
Subject: Re: kern/102344
Date: Tue, 28 Aug 2007 22:00:07 +0400

 Please post your dmesg, ipfilter rules, ifconfig output, ipfstat output, netstat -rn output...
 
 -- 
 Sergey Svishchev
Responsible-Changed-From-To: freebsd-bugs->freebsd-pf 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Mon May 19 00:09:46 UTC 2008 
Responsible-Changed-Why:  
Over to maintainer(s). 

http://www.freebsd.org/cgi/query-pr.cgi?pr=102344 
State-Changed-From-To: open->feedback 
State-Changed-By: mlaier 
State-Changed-When: Mon May 19 09:15:26 UTC 2008 
State-Changed-Why:  
The submitter has been asked for configuration details over a year ago. 


Responsible-Changed-From-To: freebsd-pf->freebsd-net 
Responsible-Changed-By: mlaier 
Responsible-Changed-When: Mon May 19 09:15:26 UTC 2008 
Responsible-Changed-Why:  
Not a pf problem.  Reassign to freebsd-net. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=102344 
State-Changed-From-To: feedback->closed 
State-Changed-By: gavin 
State-Changed-When: Thu Aug 28 16:40:54 UTC 2008 
State-Changed-Why:  
Feedback timeout (1 year today).  To submitter: if you do still 
see this issue and can provide the required information, we can 
reopen the PR. 


Responsible-Changed-From-To: freebsd-net->gavin 
Responsible-Changed-By: gavin 
Responsible-Changed-When: Thu Aug 28 16:40:54 UTC 2008 
Responsible-Changed-Why:  
Track 

http://www.freebsd.org/cgi/query-pr.cgi?pr=102344 
>Unformatted:
