Bug 20713

Summary: errant traceroute output from behind natd
Product: Base System Reporter: markm68k <markm68k>
Component: miscAssignee: freebsd-bugs (Nobody) <bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: 4.1-RELEASE   
Hardware: Any   
OS: Any   

Description markm68k 2000-08-19 10:40:00 UTC 
Setting up a firewall rule to send the icmp unreachable for a tcp connection causes the icmp response that is sent to say that the firewall itself is unreachable.

Fix: 

unknown.
How-To-Repeat: 1. install FreeBSD 4.1-RELEASE
2. configure an "open" firewall
3. configure a natd alias internal interface.
3. add a "unreach host-prohib" rule (e.g. telnet)
4. from a computer connected to the FreeBSD computer behind a natd connection, try to connect to the unreachable host via tcp (e.g. telnet)
5. watch the results from tcpdump.
Comment 1 dwmalone freebsd_committer freebsd_triage 2000-08-19 11:06:02 UTC 
State Changed
From-To: open->closed

Duplicate of 20714 with wrong subject.