>Number:         5633
>Category:       port-i386
>Synopsis:       rwhod does not work with we1 interface when ip-filtering
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    gnats-admin (GNATS administrator)
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sat Jun 20 11:05:00 1998
>Last-Modified:
>Originator:     Klaus Helbing
>Organization:
	Physikalisches Institut, Universitaet Erlangen
>Release:        NetBSD-1.3.2
>Environment:
System: NetBSD phop3.physik.uni-bonn.de 1.3.2 NetBSD 1.3.2 (PHOPS) #1: Wed Jun 10 10:30:05 MEST 1998 helbing@phop3.physik.uni-bonn.de:/usr/src/sys/arch/i386/compile/PHOPS i386


>Description:
	When ip-filtering is on with ipf.conf like this 
		(generated by mkfilters):
		block in log quick from any to any with ipopts
		block in log quick proto tcp from any to any with short
		pass out on we1 all head 150
		block out from 127.0.0.0/8 to any group 150
		block out from any to 127.0.0.0/8 group 150
		block out from any to 131.220.161.53/32 group 150
		pass in on we1 all head 100
		block in from 127.0.0.0/8 to any group 100
		block in from 131.220.161.53/32 to any group 100

	then rwhod is not able to monitor the system status of the machine 
	it is running on when in use with a we1 interface:
		we1: overriding IRQ 10 to 5
		we1 at isa0 port 0x300-0x31f iomem 0xcc000-0xcffff irq 5
		we1: WD8013EPC Ethernet (16-bit)
		we1: Ethernet address 00:00:c0:11:0f:2e

	rwhod is correctly reporting the status of other machines. 
	Moreover, with either no ip-filtering or with de0 or ne1 interfaces
	everything works fine!

>How-To-Repeat:

>Fix:
	No idea.
>Audit-Trail:
>Unformatted: