On 2011-12-12 08:13, Peter Hallin wrote:
Hello,
We have a bunch of bridged firewalls and we are now looking into using
the pfsync defer feature to solve some problems with async states
during failover.
However I discovered that the deferred packets (tcp SYN for example) are
being sent
problem to explain.
Best regards,
Peter Hallin
Lund University
On 2011-12-12 08:13, Peter Hallin wrote:
Shit, realised I should have sent this to misc...
On 2011-08-28 02:16, Christiano F. Haesbaert wrote:
Heya,
So here is a crude diff, the shiffting can be improved and if we wan't
this in the future we'll need a knob to enable don't touch the
vlanprio thingy.
Please it would be great if you can give this a spin Peter. I did some
basic
On 2011-08-21 23:33, Christiano F. Haesbaert wrote:
I have a partial diff for this.
Unfortunately I couldn't test so I'll need more time.
The idea is to flag the incoming packet with a new flag M_VLANPRIO
which signals vlan(4) to not touch the vlanprio in vlan_start().
It's a
. In this case,
* vlan_start()
* will not modify the ethernet header.
*/
Sounds tricky, but can it be done?
Any feedback highly appreciated.
Brgds, Peter
--
--
Peter Hallin
IT-Security and firewalls
LDC, Lunds Universitet
Margaretav. 1A, 222 40, LUND
http://www.ldc.lu.se
