* Byron Klippert <[email protected]> [2012-03-12 07:37]: > I've been looking over sys/src/pf.c but it's not clear to me; what is > the default behavior when a udp packet arrives with a bad payload > checksum? I'm assuming it is dropped.
we don't check the protocol checksums for purely forwarded packets any more. it is a rather expensive check, and not the firewall's business really. some bits are in http://quigon.bsws.de/papers/2009/eurobsdcon-faster_packets/ > Also - what are the implications of an un-parenthesized return value? I > found a rogue "return PF_PASS;" within pf.c. it's the same to the compiler -- Henning Brauer, [email protected], [email protected] BS Web Services, http://bsws.de, Full-Service ISP Secure Hosting, Mail and DNS Services. Dedicated Servers, Root to Fully Managed Henning Brauer Consulting, http://henningbrauer.com/
