From nobody@FreeBSD.org  Mon Mar 26 12:43:37 2012
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 8665B1065675
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 26 Mar 2012 12:43:37 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22])
	by mx1.freebsd.org (Postfix) with ESMTP id 722E98FC17
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 26 Mar 2012 12:43:37 +0000 (UTC)
Received: from red.freebsd.org (localhost [127.0.0.1])
	by red.freebsd.org (8.14.4/8.14.4) with ESMTP id q2QChbrC016778
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 26 Mar 2012 12:43:37 GMT
	(envelope-from nobody@red.freebsd.org)
Received: (from nobody@localhost)
	by red.freebsd.org (8.14.4/8.14.4/Submit) id q2QChbof016753;
	Mon, 26 Mar 2012 12:43:37 GMT
	(envelope-from nobody)
Message-Id: <201203261243.q2QChbof016753@red.freebsd.org>
Date: Mon, 26 Mar 2012 12:43:37 GMT
From: Stefan BALU <balustefan@gmail.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: simply enabling pf makes udpxy not to work
X-Send-Pr-Version: www-3.1
X-GNATS-Notify:

>Number:         166411
>Category:       kern
>Synopsis:       [pf] simply enabling pf makes udpxy not to work
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-pf
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Mar 26 12:50:01 UTC 2012
>Closed-Date:    Sun Apr 15 11:53:13 UTC 2012
>Last-Modified:  Sun Apr 15 11:53:13 UTC 2012
>Originator:     Stefan BALU
>Release:        FreeBSD 9.0-RELEASE
>Organization:
-
>Environment:
FreeBSD **.*****.** 9.0-RELEASE FreeBSD 9.0-RELEASE #0: Sun Mar 25 02:27:31 EET 2012     root@fw.llldental.ro:/usr/obj/usr/src/sys/FW  amd64
>Description:
I have an issue with pf and udpxy. I have a gateway machine with 3 ethernet cards:

re0 -> wan
re1 -> lan
re2 -> tv

The tv interface connects to my isp's IPTV network where multicast udp and igmp packets come and go.

In order for my computers and tvs to get the IPTV stream, i use an HTTP to UDP proxy (udpxy). This little application takes HTTP requests in the form of: http://udpxy-server:port/udp/CHANNEL_IP:CHANNEL_PORT from lan clients and registers to these multicast streams on the tv interface.

However, the problem appears when i simply enable pf. With no rule in pf.conf, running /etc/rc.d/pf start simply makes udpxy to stop working throwing:

read_buf: read: Resource temporary unavailable

After spending lots of hours figuring this out, i disabled pf and everything suddenly worked.

Using ipfilter, the problem is totally gone.
>How-To-Repeat:

>Fix:


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->freebsd-pf 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Wed Mar 28 08:54:35 UTC 2012 
Responsible-Changed-Why:  
Over to maintainer(s). 

http://www.freebsd.org/cgi/query-pr.cgi?pr=166411 

From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= <eri@freebsd.org>
To: bug-followup@FreeBSD.org, balustefan@gmail.com
Cc:  
Subject: Re: kern/166411: [pf] simply enabling pf makes udpxy not to work
Date: Wed, 28 Mar 2012 11:41:05 +0200

 Normally this is the effect of pf(4) default behviour of dropping
 packets with ip-options.
 
 You need to enable those with 'allow-opts' added to the rule.
 
 -- 
 Ermal

From: Stefan Balu <balustefan@gmail.com>
To: =?UTF-8?Q?Ermal_Lu=C3=A7i?= <eri@freebsd.org>
Cc: bug-followup@freebsd.org
Subject: Re: kern/166411: [pf] simply enabling pf makes udpxy not to work
Date: Sun, 1 Apr 2012 14:06:55 +0300

 --f46d040f9bae54ce2504bc9c12d4
 Content-Type: text/plain; charset=UTF-8
 Content-Transfer-Encoding: quoted-printable
 
 This seems to have fixed the problem. Thank you!
 
 On Wed, Mar 28, 2012 at 12:41 PM, Ermal Lu=C3=A7i <eri@freebsd.org> wrote:
 
 > Normally this is the effect of pf(4) default behviour of dropping
 > packets with ip-options.
 >
 > You need to enable those with 'allow-opts' added to the rule.
 >
 > --
 > Ermal
 >
 
 
 
 --=20
 =C8=98tefan B=C4=82LU
 Tel: +40757 377 489
 
 --f46d040f9bae54ce2504bc9c12d4
 Content-Type: text/html; charset=UTF-8
 Content-Transfer-Encoding: quoted-printable
 
 This seems to have fixed the problem. Thank you!<br><br><div class=3D"gmail=
 _quote">On Wed, Mar 28, 2012 at 12:41 PM, Ermal Lu=C3=A7i <span dir=3D"ltr"=
 >&lt;<a href=3D"mailto:eri@freebsd.org">eri@freebsd.org</a>&gt;</span> wrot=
 e:<br><blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-l=
 eft:1px #ccc solid;padding-left:1ex">
 Normally this is the effect of pf(4) default behviour of dropping<br>
 packets with ip-options.<br>
 <br>
 You need to enable those with &#39;allow-opts&#39; added to the rule.<br>
 <span class=3D"HOEnZb"><font color=3D"#888888"><br>
 --<br>
 Ermal<br>
 </font></span></blockquote></div><br><br clear=3D"all"><div><br></div>-- <b=
 r>=C8=98tefan B=C4=82LU<br>Tel: +40757 377 489<br>
 
 --f46d040f9bae54ce2504bc9c12d4--
State-Changed-From-To: open->closed 
State-Changed-By: glebius 
State-Changed-When: Sun Apr 15 11:52:16 UTC 2012 
State-Changed-Why:  
pf(4) dropping packets with IP options by default isn't 
a bug, but a (annoying) feature. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=166411 
>Unformatted:
