Max, good day.
Thu, Sep 27, 2007 at 05:07:11PM +0200, Max Laier wrote:
> > Cc'ing him. Max, what do you think about it?
>
> My plan is to import the new releases with my "fix" to FreeBSD in the next
> few days. From my experience and feedback from various sources the need
> to look at old pfl
Hi,
On Thu, Sep 27, 2007 at 05:07:11PM +0200, Max Laier wrote:
> From my experience and feedback from various sources the need
> to look at old pflog dumps is rather small (if not non-existing).
I see one possible operational issue here - upgrading your OS (-> new
pflog header) but not upgrading
On Tuesday 25 September 2007, Eygene Ryabinkin wrote:
> Guy, good day.
>
> Mon, Sep 24, 2007 at 02:24:34PM -0700, Guy Harris wrote:
> > On Sep 24, 2007, at 11:25 AM, Eygene Ryabinkin wrote:
> > >OpenBSD 4.1 introduced an incompatible change to their pflog device
> > >packet header:
> >
> > ...and d
Guy, good day.
Mon, Sep 24, 2007 at 02:24:34PM -0700, Guy Harris wrote:
> On Sep 24, 2007, at 11:25 AM, Eygene Ryabinkin wrote:
>
> >OpenBSD 4.1 introduced an incompatible change to their pflog device
> >packet header:
>
> ...and didn't introduce a new DLT_ value.
Exactly.
> It appears that Fr
On Sep 24, 2007, at 11:25 AM, Eygene Ryabinkin wrote:
OpenBSD 4.1 introduced an incompatible change to their pflog device
packet header:
...and didn't introduce a new DLT_ value.
It appears that FreeBSD will be doing the same for 7.0, so we just
gave up and said "no pflog dissection except
Good day.
OpenBSD 4.1 introduced an incompatible change to their pflog device
packet header: some fields were stuffed into the 'struct pfloghdr'
between 'subrulenr' and 'dir':
http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/if_pflog.h.diff?r1=1.11&r2=1.12
This broke tcpdump's ability to di
