mirror/freebsd
1
0
Fork 0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-14 10:09:48 +00:00
Code Issues Releases Activity

Pf can reassemble IPv6 fragments now.

Browse Source 
Obtained from: bluhm (OpenBSD)
Sponsored by: Essen FreeBSD Hackathon
This commit is contained in:
Kristof Provost 2015-07-25 14:06:32 +00:00
parent 933333caf8
commit e600320b2a
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=285871
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
share/man/man5/pf.conf.5
View File

@ -28,7 +28,7 @@
.\" ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
.\" POSSIBILITY OF SUCH DAMAGE.
.\"
.Dd June 29, 2012
.Dd July 25, 2015
.Dt PF.CONF 5
.Os
.Sh NAME
@ -2381,8 +2381,10 @@ Once this limit is reached, fragments that would have to be cached
are dropped until other entries time out.
The timeout value can also be adjusted.
.Pp
Currently, only IPv4 fragments are supported and IPv6 fragments
are blocked unconditionally.
When forwarding reassembled IPv6 packets, pf refragments them with
the original maximum fragment size.
This allows the sender to determine the optimal fragment size by
path MTU discovery.
.Sh ANCHORS
Besides the main ruleset,
.Xr pfctl 8