"hme" tcp4csum-rx breaks 'pf' redirection to 'ftp-proxy'

To: current-users%NetBSD.org@localhost
Subject: "hme" tcp4csum-rx breaks 'pf' redirection to 'ftp-proxy'
From: "John D. Baker" <jdbaker%mylinuxisp.com@localhost>
Date: Sun, 13 Sep 2015 21:56:13 -0500 (CDT)

In pkgsrc-user@, I noted trouble fetching the distfile for graphics/tiff.
As my NAT/firewall 'pf' rules for ftp-proxy have been working unchanged
for at least the last five years, either software or hardware broke it.

This is NetBSD/sparc-7.0_RC3 on a SPARCstation 5.

I recently updated my NAT/firewall system's hardware to use a "SUNW,qfe"
Quad Fast Ethernet card.  It shows up as hme[0-3] with ukphy[0-3].

It appears that using the hme's "tcp4csum-rx" capability on my internal
hme interface fouls up 'pf's redirection of FTP connections to ftp-proxy.
Connection attempts would time out.

Disabling "tcp4csum-rx" (leaving "tcp4csum-tx" enabled) allows proxied
FTP connections to work again.

Anyone else using sparc{,64} and hme for NAT/firewall with ftp-proxy?
If so, see anything like the above?

-- 
|/"\ John D. Baker, KN5UKS               NetBSD     Darwin/MacOS X
|\ / jdbaker[snail]mylinuxisp[flyspeck]com    OpenBSD            FreeBSD
| X  No HTML/proprietary data in email.   BSD just sits there and works!
|/ \ GPGkeyID:  D703 4A7E 479F 63F8 D3F4  BD99 9572 8F23 E4AD 1645

Follow-Ups:
- Re: "hme" tcp4csum-rx breaks 'pf' redirection to 'ftp-proxy'
  - From: Greg Troxel
- arplookup: unable to enter address - host is not on local network
  - From: Benjamin Lorenz

Prev by Date: daily CVS update output
Next by Date: daily CVS update output
Previous by Thread: daily CVS update output
Next by Thread: arplookup: unable to enter address - host is not on local network
Indexes:

Home | Main Index | Thread Index | Old Index