Bug #2665: 'pass out' on gif matches inbound traffic - pfSense - pfSense bugtracker

Actions

Copy link

Bug #2665

closed

'pass out' on gif matches inbound traffic

Added by Chris Buechler over 11 years ago. Updated over 9 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Ermal Luçi

Category:

Operating System

Target version:

2.2

Start date:

10/29/2012

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

Affected Architecture:

Description

traffic coming in on a gif interface wrongly matches the out direction on the gif. For instance this:

pass out route-to ( gif0 2610:x:x:x::2 ) inet6 from 2610:x:x:x::1/64 to !2610:x:x:x::1/64 keep state

traffic inbound on gif0 matches that rule and applies the route-to, which breaks connectivity from the IP on the remote side of the gif as it gets routed right back out the gif where it came in. Take out the route-to and reload the ruleset, and it works. Still wrongly matches the 'pass out' rule though.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #2665

'pass out' on gif matches inbound traffic

Updated by Ermal Luçi over 11 years ago

Updated by Ermal Luçi over 11 years ago

Updated by Chris Buechler over 11 years ago

Updated by Jim Thompson over 9 years ago

Updated by Chris Buechler over 9 years ago