View Single Post
  #4   (View Single Post)  
Old 23rd May 2008
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,620

If disabling rfc1323 solves it then your next step would be to revise your ipf ruleset and only create state on the initial TCP packet by using
flags S/SA
After doing that you should be able to enable TCP windows scaling as defined in RFC 1323
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote