On 2015/01/29 05:00, Kent Fritz wrote: > I believe this worked until fairly recently, but it seems broken on > the Jan 22 and Jan 28 amd64 snapshots, I haven't tried any other > architectures yet. > > # nmap -n -Pn -sS -p22,80 scanme.nmap.org > > This scan should return results immediately, but mostly just hangs > there. It's intermittent -- it works occasionally for me. It's not a > local issue, as I've tried it from work and home on 2 different > machines. If you run with --packet-trace and run tcpdump in parallel, > nmap is not receiving the second ack, though you can see it in > tcpdump. > > Kent. >
First can you try a kernel built from -current sources (to make sure you have sys/net/bpf.c r1.115)? If that doesn't help, try going back to bpf.c r1.113.