From owner-freebsd-net Sun Jan 6 7:26:53 2002 Delivered-To: freebsd-net@freebsd.org Received: from artemis.drwilco.net (artemis.drwilco.net [209.167.6.62]) by hub.freebsd.org (Postfix) with ESMTP id C4E8D37B400 for ; Sun, 6 Jan 2002 07:26:50 -0800 (PST) Received: from ceres.drwilco.net (docwilco.xs4all.nl [213.84.68.230]) by artemis.drwilco.net (8.11.6/8.11.6) with ESMTP id g06FQjR35923 (using TLSv1/SSLv3 with cipher DES-CBC3-SHA (168 bits) verified NO); Sun, 6 Jan 2002 10:26:47 -0500 (EST) (envelope-from drwilco@drwilco.net) Message-Id: <5.1.0.14.0.20020106163446.03f96bb0@mail.drwilco.net> X-Sender: lists@mail.drwilco.net X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 06 Jan 2002 16:35:41 +0100 To: Naga R Narayanaswamy , freebsd-net@FreeBSD.ORG From: "Rogier R. Mulhuijzen" Subject: Re: Bridging and 'pseudo-device tap' and PPPoE In-Reply-To: <3C372238.F529FB40@mindspring.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > > I've used bridging with tap devices plenty. Works fine for me. > >What bridging method do you use with tap device ? >option BRIDGE in kernel method OR netgraph bridging method? Netgraph bridging. > > TAP devices don't actually work unless there's a process that has the > /dev/ entry > > opened and reads from it (well, they'll buffer a little). > >So, just let a process like "cat /dev/tap0" read the tap device, I >assume. Yup, should work. Greets, Doc To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 7:56: 9 2002 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f103.law11.hotmail.com [64.4.17.103]) by hub.freebsd.org (Postfix) with ESMTP id 0F06937B405 for ; Sun, 6 Jan 2002 07:56:05 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Sun, 6 Jan 2002 07:56:04 -0800 Received: from 62.64.138.165 by lw11fd.law11.hotmail.msn.com with HTTP; Sun, 06 Jan 2002 15:56:04 GMT X-Originating-IP: [62.64.138.165] From: "June Carey" To: kris@obsecurity.org Cc: net@freebsd.org Subject: Re: FreeBSD-4.3 IPv6 bug Date: Sun, 06 Jan 2002 15:56:04 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 06 Jan 2002 15:56:04.0932 (UTC) FILETIME=[A59F3840:01C196CA] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >From: Kris Kennaway >To: June Carey >CC: bugs@freebsd.org >Subject: Re: FreeBSD-4.3 IPv6 bug >Date: Sat, 5 Jan 2002 15:26:45 -0800 > >Can you please: > >a) Test under a more recent version of FreeBSD: bugs are continually >being fixed, and this may have already been taken care of if it is >indeed an OS bug. I'm sorry, I haven't got FreeBSD-4.4 and haven't got the resources to get it. Perhaps someone can provide me with a FreeBSD-4.4 shell account on the internet ? I saw no mention of this "bug" being fixed in the RELEASE NOTES for FreeBSD-4.4 .... > >b) Provide source code exhibiting the problem, and send it to the >net@FreeBSD.org mailing list, which is a more appropriate list for >discussion of this problem. Well, the source code is semi-proprietary, in the sense that I was going to release it under a BSD license as an Open Source Project, but haven't got around to doing so yet. Again, if any kind soul "out there" could help me out with a shell account on a development machine, that would make a difference. Cheers, Robin Carey. > >Kris ><< attach3 >> _________________________________________________________________ Chat with friends online, try MSN Messenger: http://messenger.msn.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 10:13:30 2002 Delivered-To: freebsd-net@freebsd.org Received: from obsecurity.dyndns.org (adsl-64-169-107-4.dsl.lsan03.pacbell.net [64.169.107.4]) by hub.freebsd.org (Postfix) with ESMTP id 0119137B416 for ; Sun, 6 Jan 2002 10:13:27 -0800 (PST) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id 7451866CB7; Sun, 6 Jan 2002 10:13:26 -0800 (PST) Date: Sun, 6 Jan 2002 10:13:26 -0800 From: Kris Kennaway To: June Carey Cc: kris@obsecurity.org, net@freebsd.org Subject: Re: FreeBSD-4.3 IPv6 bug Message-ID: <20020106101326.A44681@xor.obsecurity.org> References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="Qxx1br4bt0+wmkIi" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from carey_june@hotmail.com on Sun, Jan 06, 2002 at 03:56:04PM +0000 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --Qxx1br4bt0+wmkIi Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, Jan 06, 2002 at 03:56:04PM +0000, June Carey wrote: > >From: Kris Kennaway > >To: June Carey > >CC: bugs@freebsd.org > >Subject: Re: FreeBSD-4.3 IPv6 bug > >Date: Sat, 5 Jan 2002 15:26:45 -0800 > > > >Can you please: > > > >a) Test under a more recent version of FreeBSD: bugs are continually > >being fixed, and this may have already been taken care of if it is > >indeed an OS bug. >=20 > I'm sorry, I haven't got FreeBSD-4.4 and haven't got the resources to get= =20 > it. Perhaps someone can provide me with a FreeBSD-4.4 shell account on th= e=20 > internet ? >=20 > I saw no mention of this "bug" being fixed in the RELEASE NOTES for=20 > FreeBSD-4.4 .... "Minor" bugs don't tend to get mentioned - there are literally hundreds of them fixed between every release. The IPv6 code is also developed externally by the KAME project, so we don't even directly see in the FreeBSD commit logs all of the bugfixes which were made by the KAME developers between imports into FreeBSD (though they are of course available in the KAME repository). > >b) Provide source code exhibiting the problem, and send it to the > >net@FreeBSD.org mailing list, which is a more appropriate list for > >discussion of this problem. >=20 > Well, the source code is semi-proprietary, in the sense that I was going = to=20 > release it under a BSD license as an Open Source Project, but haven't got= =20 > around to doing so yet. Well then, write up a small test application which does the same thing as the part of your proprietary code which is failing, and which demonstrates the condition you're showing. So far you haven't given enough information to diagnose the problem. Kris --Qxx1br4bt0+wmkIi Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE8OJPFWry0BWjoQKURAioSAKCoy9IgtAIA7RTBDa6LUq1kg8cwOQCg+XWq 5A6CoE67UBQDQjJQrqnwjF4= =/QSh -----END PGP SIGNATURE----- --Qxx1br4bt0+wmkIi-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 12:51:18 2002 Delivered-To: freebsd-net@freebsd.org Received: from ardbeg.meer.net (ardbeg.meer.net [209.157.152.23]) by hub.freebsd.org (Postfix) with ESMTP id 365F237B41A for ; Sun, 6 Jan 2002 12:51:05 -0800 (PST) Received: from meer.meer.net (mail.meer.net [209.157.152.14]) by ardbeg.meer.net (8.11.3/8.11.3) with ESMTP id g06Kp4D48246 for ; Sun, 6 Jan 2002 12:51:04 -0800 (PST) Received: from neville-neil.com ([209.157.133.226]) by meer.meer.net (8.9.3/8.9.3/meer) with ESMTP id MAA2880827 for ; Sun, 6 Jan 2002 12:50:22 -0800 (PST) Message-Id: <200201062050.MAA2880827@meer.meer.net> To: freebsd-net@freebsd.org Subject: Descriptions of SEQPACKET and RDM protocols? MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <45677.1010350221.1@neville-neil.com> Date: Sun, 06 Jan 2002 12:50:21 -0800 From: "George V. Neville-Neil" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I'm looking for papers or documentation describing SEQPACKET or RDM protocols. I see that there is a SEQPACKET protocol under the NS domain which I could just read but a paper would be best to start with. Web searches have not turned up much that is of use. Thanks, George To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 17:22:28 2002 Delivered-To: freebsd-net@freebsd.org Received: from pimout3-int.prodigy.net (pimout3-ext.prodigy.net [207.115.63.102]) by hub.freebsd.org (Postfix) with ESMTP id 0F66537B416 for ; Sun, 6 Jan 2002 17:22:26 -0800 (PST) Received: from [10.0.1.26] (adsl-63-207-13-11.dsl.snfc21.pacbell.net [63.207.13.11]) by pimout3-int.prodigy.net (8.11.0/8.11.0) with ESMTP id g071MOH143568 for ; Sun, 6 Jan 2002 20:22:25 -0500 Mime-Version: 1.0 X-Sender: rleising@pop.sbcglobal.net Message-Id: Date: Sun, 6 Jan 2002 17:22:00 -0800 To: freebsd-net@freebsd.org From: Rachel Leising Subject: name resolution problems and "full socket buffers" Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org -- I can't seem to get name resolution working correctly. According to sniffer output, the dns query goes out fine and the response comes back just fine. However, my machine then replies to the dns server with an ICMP "port unreachable message"... regardless of the ephemeral port used by my machine as the source port for the dns query. nestat -s also shows the following udp counters incrementing: "x dropped due to no socket" "y dropped due to full socket buffers" The output of "sysctl -a", for the relevant variables, seems fine... when compared to that of another machine which is working correctly. I can ping ip addresses just fine, however because name-resolution is broken, there isn't a whole lot of "networking" going on. There are no firewalls configured on the broken system. Any help or pointers would be greatly appreciated. thanks, Rach To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 19:30:10 2002 Delivered-To: freebsd-net@freebsd.org Received: from mgw1.MEIway.com (mgw1.meiway.com [212.73.210.75]) by hub.freebsd.org (Postfix) with ESMTP id 93C6237B419; Sun, 6 Jan 2002 19:30:03 -0800 (PST) Received: from mail.Go2France.com (ms1.meiway.com [212.73.210.73]) by mgw1.MEIway.com (Postfix Relay Hub) with ESMTP id B3DE916B26; Mon, 7 Jan 2002 04:30:01 +0100 (CET) Received: from LenConrad.Go2France.com [66.64.14.18] by mail.Go2France.com with ESMTP (SMTPD32-6.06) id A9FEB0802FE; Mon, 07 Jan 2002 04:46:06 +0100 Message-Id: <5.1.0.14.2.20020105114006.0291fec0@mail.Go2France.com> X-Sender: LConrad@Go2France.com@mail.Go2France.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Sun, 06 Jan 2002 21:29:42 -0600 To: Freebsd-questions@freebsd.org, freebsd-net@FreeBSD.ORG From: Len Conrad Subject: multi-NIC broadcasting: it isn't Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org 4.4-20020101-STABLE with 5 nics ifconfig_fxp0="inet 10.1.1.1 netmask 255.255.255.0 media autoselect" ifconfig_fxp1="inet 10.1.2.1 netmask 255.255.255.0 media autoselect" ifconfig_fxp2="inet 192.168.253.59 netmask 255.255.255.0 media autoselect" ifconfig_fxp3="inet 10.1.4.1 netmask 255.255.255.0 media autoselect" ifconfig_fxp4="inet 10.1.5.1 netmask 255.255.255.0 media autoselect" we can ping from a PC on net 10.1.5.0/24 to a PC on net 10.1.1.0/24, so box as gateway and routing are working. then send broadcasts from the PC on 10.1.5.0/24 to these ports: 255.255.255.255 port 26790 255.255.255.255 port 26791 255.255.255.255 port 26792 255.255.255.255 port 26793 trafshow indicates that broadcasts originate on 10.1.5.0/24, but nothing appears on the other nets. Suggestions where to look? Len http://MenAndMice.com/DNS-training http://BIND8NT.MEIway.com : ISC BIND 8.2.4 for NT4 & W2K http://IMGate.MEIway.com : Build free, hi-perf, anti-abuse mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 23:15:19 2002 Delivered-To: freebsd-net@freebsd.org Received: from albatross.prod.itd.earthlink.net (albatross.mail.pas.earthlink.net [207.217.120.120]) by hub.freebsd.org (Postfix) with ESMTP id 455FE37B404 for ; Sun, 6 Jan 2002 23:15:14 -0800 (PST) Received: from user-33qtnie.dialup.mindspring.com ([199.174.222.78] helo=gohan.cjclark.org) by albatross.prod.itd.earthlink.net with esmtp (Exim 3.33 #1) id 16NU00-0002nQ-00; Sun, 06 Jan 2002 23:15:13 -0800 Received: (from cjc@localhost) by gohan.cjclark.org (8.11.6/8.11.1) id g076dWi02971; Sun, 6 Jan 2002 22:39:32 -0800 (PST) (envelope-from cjc) Date: Sun, 6 Jan 2002 22:39:31 -0800 From: "Crist J. Clark" To: Rachel Leising Cc: freebsd-net@FreeBSD.ORG Subject: Re: name resolution problems and "full socket buffers" Message-ID: <20020106223931.E2029@gohan.cjclark.org> Reply-To: cjclark@alum.mit.edu References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from rleising@sbcglobal.net on Sun, Jan 06, 2002 at 05:22:00PM -0800 X-URL: http://people.freebsd.org/~cjc/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, Jan 06, 2002 at 05:22:00PM -0800, Rachel Leising wrote: > > -- > I can't seem to get name resolution working correctly. > > According to sniffer output, the dns query goes out fine and the > response comes back just fine. However, my machine then replies to > the dns server with an ICMP "port unreachable message"... regardless > of the ephemeral port used by my machine as the source port for the > dns query. Could you post the actual tcpdump(1) output, # tcpdump -vvvn 'udp && port 53' Just in case you are missing something. > nestat -s also shows the following udp counters incrementing: > > "x dropped due to no socket" This is what I would expect for what you describe... > "y dropped due to full socket buffers" Hmmmm... Could we double-check the firewall issue, $ sysctl net.inet.ip.fw.enable net.inet.ipf.fr_running And see the full output of, $ netstat -s -p udp $ netstat -an -p udp $ host testhost # your DNS test here $ netstat -s -p udp $ netstat -an -p udp -- "It's always funny until someone gets hurt. Then it's hilarious." Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sun Jan 6 23:46:43 2002 Delivered-To: freebsd-net@freebsd.org Received: from pintail.mail.pas.earthlink.net (pintail.mail.pas.earthlink.net [207.217.120.122]) by hub.freebsd.org (Postfix) with ESMTP id 9070337B402; Sun, 6 Jan 2002 23:46:39 -0800 (PST) Received: from user-33qtnie.dialup.mindspring.com ([199.174.222.78] helo=gohan.cjclark.org) by pintail.mail.pas.earthlink.net with esmtp (Exim 3.33 #1) id 16NUUK-00031C-00; Sun, 06 Jan 2002 23:46:34 -0800 Received: (from cjc@localhost) by gohan.cjclark.org (8.11.6/8.11.1) id g077kC403602; Sun, 6 Jan 2002 23:46:12 -0800 (PST) (envelope-from cjc) Date: Sun, 6 Jan 2002 23:46:11 -0800 From: "Crist J. Clark" To: Len Conrad Cc: Freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG Subject: Re: multi-NIC broadcasting: it isn't Message-ID: <20020106234611.J2029@gohan.cjclark.org> Reply-To: cjclark@alum.mit.edu References: <5.1.0.14.2.20020105114006.0291fec0@mail.Go2France.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <5.1.0.14.2.20020105114006.0291fec0@mail.Go2France.com>; from LConrad@Go2France.com on Sun, Jan 06, 2002 at 09:29:42PM -0600 X-URL: http://people.freebsd.org/~cjc/ Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Sun, Jan 06, 2002 at 09:29:42PM -0600, Len Conrad wrote: > 4.4-20020101-STABLE with 5 nics > > ifconfig_fxp0="inet 10.1.1.1 netmask 255.255.255.0 media autoselect" > ifconfig_fxp1="inet 10.1.2.1 netmask 255.255.255.0 media autoselect" > ifconfig_fxp2="inet 192.168.253.59 netmask 255.255.255.0 media autoselect" > ifconfig_fxp3="inet 10.1.4.1 netmask 255.255.255.0 media autoselect" > ifconfig_fxp4="inet 10.1.5.1 netmask 255.255.255.0 media autoselect" > > we can ping from a PC on net 10.1.5.0/24 to a PC on net 10.1.1.0/24, so box > as gateway and routing are working. > > then send broadcasts from the PC on 10.1.5.0/24 to these ports: > > 255.255.255.255 port 26790 > 255.255.255.255 port 26791 > 255.255.255.255 port 26792 > 255.255.255.255 port 26793 > > trafshow indicates that broadcasts originate on 10.1.5.0/24, but nothing > appears on the other nets. > > Suggestions where to look? Uh, nowhere? That is the required behavior. 255.255.255.255 is the _local_ broadcast address. It never crosses a router. -- "It's always funny until someone gets hurt. Then it's hilarious." Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Jan 7 3:46:42 2002 Delivered-To: freebsd-net@freebsd.org Received: from artemis.drwilco.net (artemis.drwilco.net [209.167.6.62]) by hub.freebsd.org (Postfix) with ESMTP id C21C437B41A; Mon, 7 Jan 2002 03:46:33 -0800 (PST) Received: from ceres.drwilco.net (docwilco.xs4all.nl [213.84.68.230]) by artemis.drwilco.net (8.11.6/8.11.6) with ESMTP id g07BkMR65614 (using TLSv1/SSLv3 with cipher DES-CBC3-SHA (168 bits) verified NO); Mon, 7 Jan 2002 06:46:24 -0500 (EST) (envelope-from drwilco@drwilco.net) Message-Id: <5.1.0.14.0.20020107125304.01bcbd68@mail.drwilco.net> X-Sender: lists@mail.drwilco.net X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Mon, 07 Jan 2002 12:55:21 +0100 To: cjclark@alum.mit.edu, Len Conrad From: "Rogier R. Mulhuijzen" Subject: Re: multi-NIC broadcasting: it isn't Cc: Freebsd-questions@FreeBSD.ORG, freebsd-net@FreeBSD.ORG In-Reply-To: <20020106234611.J2029@gohan.cjclark.org> References: <5.1.0.14.2.20020105114006.0291fec0@mail.Go2France.com> <5.1.0.14.2.20020105114006.0291fec0@mail.Go2France.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Uh, nowhere? That is the required behavior. 255.255.255.255 is the >_local_ broadcast address. It never crosses a router. If you want broadcasts to work between all 4 10.* networks you will have to bridge between them and make the netmask a little wider so that they're all in the same IP subnet as well. DocWilco To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Jan 7 8: 3:55 2002 Delivered-To: freebsd-net@freebsd.org Received: from rerun.lucentctc.com (rerun.lucentctc.com [199.93.237.2]) by hub.freebsd.org (Postfix) with ESMTP id AF17A37B402 for ; Mon, 7 Jan 2002 08:03:35 -0800 (PST) Received: by rerun.lucentctc.com with Internet Mail Service (5.5.2653.19) id ; Mon, 7 Jan 2002 11:03:29 -0500 Message-ID: <3A6D367EA1EFD4118C9B00A0C9DD99D70653AD@rerun.lucentctc.com> From: "Cambria, Mike" To: "'freebsd-net@freebsd.org'" Subject: Workaround (RE: TCP connection via IPsec machine also running nat d) Date: Mon, 7 Jan 2002 11:03:23 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I'm able to workaround the problem posted earlier by doing the following: Since the machine which "eats" the received esp packets after natd is a router for the subnet making natd necessary, I'm able to connect to this machine by establishing sessions to any of the IP addresses on the other side of natd. It works just fine. This will suffice until I can figure out how to connect to a socket via a tunnel endpoint which is also doing natd. MikeC -----Original Message----- From: Cambria, Mike Sent: Friday, January 04, 2002 4:09 PM To: 'freebsd-net@freebsd.org' Cc: Cambria, Mike Subject: TCP connection via IPsec machine also running natd I'm having problems connecting (e.g. telnet, ssh, ftp etc.) to a machine which is at the other end of an IPsec tunnel. Passing data with machines, via this tunnel, on subnets for which the tunnel endpoint is acting as a router work just fine. I'm using FreeBSD 4.4-Stable (cvsup'ed shortly after 4.4-Release) and have an IPsec tunnel from one subnet at home to a machine at a friends house. The subnet at home is behind ipfw/natd and uses a cable modem (i.e. one IP address) to access the Internet. I'm using ipfw "simple" with one addition to allow incoming TCP traffic from the friends machine (also FreeBSD 4.4). This _works_ fine for traffic to/from the subnet. Encrypted packets hit divert, get counted on the ipfw allow esp rule, are decrypted and are then routed to the destination machine and vice versa. Problems exist only with traffic from the remote (friends) machine that terminates at the ipfw/natd machine itself. The IKE (racoon) ISAKMP-SA is established just fine, an IPsec-SA is established for both directions and the remote machine sends the (e.g.) telnet traffic encrypted. The counters for ipfw show the packet hitting the divert rule and esp packet has been received. However, the connection never seems to make it to telnetd. Before setting up IPsec, this worked just fine. I tried again using the sock program (see Unix Network Programming, Vol. 1 2ed ) to have more control, rule out inted etc. with the same results. sock -s never returns form the listen call. As I said earlier, packets which route through ipfw/natd get unencrypted and make it to the remote subnet just fine. Looking at 'ipfw -a l' it seems that the ESP packets are being received _after_ being diverted to natd, but just not sent to the socket: [deleted] 01600 20 4384 divert 8668 ip from any to any via vx0 01700 0 0 deny ip from 10.0.0.0/8 to any via vx0 01800 0 0 deny ip from 172.16.0.0/12 to any via vx0 01900 0 0 deny ip from 192.168.0.0/16 to any via vx0 02000 0 0 deny ip from 0.0.0.0/8 to any via vx0 02100 0 0 deny ip from 169.254.0.0/16 to any via vx0 02200 0 0 deny ip from 192.0.2.0/24 to any via vx0 02300 0 0 deny ip from 224.0.0.0/4 to any via vx0 02400 0 0 deny ip from 240.0.0.0/4 to any via vx0 02500 19 4272 allow tcp from any to any established (an ssh session I have up to gather info on one PC) 02600 0 0 allow ip from any to any frag 02700 0 0 allow udp from any to any 500 02800 0 0 allow udp from any 500 to any 02900 1 112 allow esp from any to any (the encrypted packet) [deleted] 03500 0 0 allow tcp from to setup [rest deleted] Any thoughts on where to look next? I don't see any counters for "deny" rules going up, so I'm guessing that the unencrypted packet isn't getting dropped due to one of my ipfw rules. I also notice that the counter on my firewall rule which explicitly allows session setup from my friends machine is not incrementing. Any help appreciated. Thanks, MikeC Michael C. Cambria Avaya Inc. Consulting Engineer Former Enterprise Networks Group voice: (978) 287 - 2807 of Lucent Technologies fax: (978) 381 - 6415 300 Baker Avenue email: mcambria@avaya.com Concord, Massachusetts 01742 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Jan 7 20:51:50 2002 Delivered-To: freebsd-net@freebsd.org Received: from vms4.rit.edu (vms4.isc.rit.edu [129.21.3.15]) by hub.freebsd.org (Postfix) with ESMTP id E1EAE37B404; Mon, 7 Jan 2002 20:51:42 -0800 (PST) Received: from minipas ([129.21.137.149]) by ritvax.isc.rit.edu (PMDF V5.2-32 #41784) with ESMTPA id <01KCT3NM9BMICLBCI5@ritvax.isc.rit.edu>; Mon, 7 Jan 2002 23:51:40 EST Date: Mon, 07 Jan 2002 23:50:45 -0500 From: "Nevin E. Leiby" Subject: Juniper IOS install woes on FreeBSD machine To: freebsd-questions@freebsd.org, freebsd-net@freebsd.org Message-id: <00e501c19800$08a33460$95891581@minipas> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Mailer: Microsoft Outlook Express 6.00.2600.0000 Content-type: multipart/alternative; boundary="Boundary_(ID_KNXln3fhIbnbQgovrMwj3A)" X-Priority: 3 X-MSMail-priority: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. --Boundary_(ID_KNXln3fhIbnbQgovrMwj3A) Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT I have begun an research project at my university in hopes of implementing a network of FreeBSD workstations running JunOS. Unfortunately, I am having some difficulties with the JunOS (v5-r1) extraction process on the FreeBSD machine (4.4). Although I have scanned attempted to execute the extracted sh scripts (eg, +INSTALL), all of the binaries in the boot/ directory are failing with the "Abort trap" error message. I tried to contact Juniper's TAC, but all of my inqueries have not been answered - Any pointers or guidance in installing the OS will be enormously appreciated!! TIA!! Nevin Leiby (nel9996@rit.edu) --Boundary_(ID_KNXln3fhIbnbQgovrMwj3A) Content-type: text/html; charset=iso-8859-1 Content-transfer-encoding: 7BIT
I have begun an research project at my university in hopes of
implementing a network of FreeBSD workstations running JunOS.
 
Unfortunately, I am having some difficulties with the JunOS (v5-r1)
extraction process on the FreeBSD machine (4.4). Although I have
scanned attempted to execute the extracted sh scripts (eg, +INSTALL),
all of the binaries in the boot/ directory are failing with the "Abort
trap" error message.

I tried to contact Juniper's TAC, but all of my inqueries have not
been answered - Any pointers or guidance in installing the OS will be
enormously appreciated!!
 
TIA!!
Nevin Leiby (nel9996@rit.edu)
--Boundary_(ID_KNXln3fhIbnbQgovrMwj3A)-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Jan 7 22:22:20 2002 Delivered-To: freebsd-net@freebsd.org Received: from vms4.rit.edu (vms4.isc.rit.edu [129.21.3.15]) by hub.freebsd.org (Postfix) with ESMTP id 6591A37B404; Mon, 7 Jan 2002 22:22:15 -0800 (PST) Received: from minipas ([129.21.137.149]) by ritvax.isc.rit.edu (PMDF V5.2-32 #41784) with ESMTPA id <01KCT6TSS07ECLB832@ritvax.isc.rit.edu>; Tue, 8 Jan 2002 01:22:10 EST Date: Tue, 08 Jan 2002 01:21:14 -0500 From: "Nevin E. Leiby" Subject: Re: Juniper IOS install woes on FreeBSD machine To: freebsd-net@freebsd.org, freebsd-questions@freebsd.org Message-id: <011b01c1980c$ace65410$95891581@minipas> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Mailer: Microsoft Outlook Express 6.00.2600.0000 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT X-Priority: 3 X-MSMail-priority: Normal References: <5.1.0.14.2.20020108163940.01e6d130@pop.ozemail.com.au> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > Umm... doesn't JunOS only run on Juniper hardware (ie. routers)?! > Though based on the FreeBSD kernel, I'd be surprised if you could > just run JunOS on a FreeBSD workstation... ... > Why would you install JunOS on a workstation? JunOS is developed > especially for Juniper routers, and I would imagine has drivers writen > expressly for the hardware that make up a Juniper. Understandibly, but we only have access to crisco's 2500s, two or three 5500s, and thats about it...nothin more than that...=\ We do, however, have an entire lab full of spare pcs with an abundance of nics, all of which are compatible with the FreeBSD os... Although similar projects have been duplicated with the Zebra and Linux Router Project, it seems feasible. Unfortunately, at the moment I cannot quote any of the previous posts that I have read, a few posts seemed to hint at the ability to run the juniper code on a freebsd machine without requiring the juniper hardware. Although functionality would be limited to pc hardware (eg, only ethernet and perhaps t1 cards, etc), ppl seemed to hint at the fact that it was indeed possible. The exact process was never mentioned, nor did any FAQs or other articles on the net prove helpful tho...A previous coworker of mine attended a Juniper training conference in VA with an instructor that mentioned it... So, wouldn't it be possible to have the freebsd workstation execute the juniper ios code to have the low-level equivilant of a juniper router?? I certainly don't understand all of the specifics, but Im not sure how to go further from here...It seems as though the only [plausible] option would be to build the entire junos filesystem as done on a juniper router, then load the ios image, etc Thoughts? > Have you tries strace on the files? What are the install scripts trying to do? I haven't tried strace on the binary code files if I remember correctly (first attempt was about 4 weeks ago). I did, however, execute a 'file' command to determine the appropriate file types of binaries. Finally, I did attempt to execute the binaries, but I do not have copies of the explicit error messages at the moment other than what I mentioned previously: ...I have scanned attempted to execute the extracted sh scripts (eg, +INSTALL), all of the binaries in the boot/ directory are failing with the "Abort trap" error message..... I do not understand the script completely yet - on a juniper router the scripts are executed automatically. I might have to trace the script line by line to determine what failures are occuring now and why.. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Mon Jan 7 23:43:46 2002 Delivered-To: freebsd-net@freebsd.org Received: from pimout2-int.prodigy.net (pimout2-ext.prodigy.net [207.115.63.101]) by hub.freebsd.org (Postfix) with ESMTP id 24AEC37B416 for ; Mon, 7 Jan 2002 23:43:40 -0800 (PST) Received: from [10.0.1.26] (adsl-64-161-212-229.dsl.snfc21.pacbell.net [64.161.212.229]) by pimout2-int.prodigy.net (8.11.0/8.11.0) with ESMTP id g087hVR159310; Tue, 8 Jan 2002 02:43:32 -0500 Mime-Version: 1.0 X-Sender: rleising@pop.sbcglobal.net Message-Id: In-Reply-To: <20020106223931.E2029@gohan.cjclark.org> References: <20020106223931.E2029@gohan.cjclark.org> Date: Mon, 7 Jan 2002 23:43:05 -0800 To: cjclark@alum.mit.edu From: Rachel Leising Subject: Re: name resolution problems and "full socket buffers" Cc: freebsd-net@FreeBSD.ORG, rleising@sbcglobal.net Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Crist, Please see output in-line below... >On Sun, Jan 06, 2002 at 05:22:00PM -0800, Rachel Leising wrote: >> >> -- >> I can't seem to get name resolution working correctly. >> >> According to sniffer output, the dns query goes out fine and the >> response comes back just fine. However, my machine then replies to >> the dns server with an ICMP "port unreachable message"... regardless >> of the ephemeral port used by my machine as the source port for the >> dns query. > >Could you post the actual tcpdump(1) output, > > # tcpdump -vvvn 'udp && port 53' > >Just in case you are missing something. # tcpdump -vvn 'udp && port 53' tcpdump: listening on wi0 23:03:06.652249 10.0.1.14.1068 > 10.1.1.53: [ udp sum ok ] 26929+ A? www.yahoo.com. [ |domain ] (ttl 64, id 120, len 59) 23:03:06.674992 63.203.35.55.53 > 10.0.1.14.1068: 26929 q: A? www.yahoo.com. 7/8/8 www.yahoo.com. CNAME[ |domain ] (DF) (ttl 249, id 16300, len 453) 23:03:11.660476 10.0.1.14.1068 > 10.1.1.53: [ udp sum ok ] 26929+ A? www.yahoo.com. [ |domain ] (ttl 64, id 122, len 59) 23:03:11.686633 63.203.35.55.53 > 10.0.1.14.1068: 26929 q: A? www.yahoo.com. 7/8/8 www.yahoo.com. CNAME[ |domain ] (DF) (ttl 249, id 16301, len 453) 23:03:16.670665 10.0.1.14.1069 > 10.1.1.53: [ udp sum ok ] 26930+ MX? www.yahoo.com. [ |domain ] (ttl 64, id 124, len 59) 23:03:16.800894 63.203.35.55.53 > 10.0.1.14.1069: 26930 q: MX? www.yahoo.com. 1/1/0 www.yahoo.com. CNAME[ |domain ] (DF) (ttl 249, id 16302, len 153) 23:03:21.680620 10.0.1.14.1069 > 10.1.1.53: [ udp sum ok ] 26930+ MX? www.yahoo.com. [ |domain ] (ttl 64, id 126, len 59) 23:03:21.703735 63.203.35.55.53 > 10.0.1.14.1069: 26930 q: MX? www.yahoo.com. 1/1/0 www.yahoo.com. CNAME[ |domain ] (DF) (ttl 249, id 16303, len 153) > >> nestat -s also shows the following udp counters incrementing: >> >> "x dropped due to no socket" > >This is what I would expect for what you describe... > >> "y dropped due to full socket buffers" > >Hmmmm... > >Could we double-check the firewall issue, > > $ sysctl net.inet.ip.fw.enable net.inet.ipf.fr_running # sysctl net.inet.ip.fw.enable sysctl: unknown oid 'net.inet.ip.fw.enable' # sysctl net.inet.ipf.fr_running sysctl: unknown oid 'net.inet.ipf.fr_running' > >And see the full output of, > > $ netstat -s -p udp # netstat -s -p udp udp: 82 datagrams received 0 with incomplete header 0 with bad data length field 0 with bad checksum 0 with no checksum 15 dropped due to no socket 0 broadcast/multicast datagrams dropped due to no socket 67 dropped due to full socket buffers 0 not for hashed pcb 0 delivered 19 datagrams output > $ netstat -an -p udp # netstat -an -p udp Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) udp4 0 0 *.68 *.* udp4 0 0 *.* *.* udp4 0 0 *.514 *.* udp6 0 0 *.514 *.* > $ host testhost # your DNS test here # host www.yahoo.com #the tcpdump command above was initiated immediately before this > $ netstat -s -p udp # netstat -s -p udp udp: 289 datagrams received 0 with incomplete header 0 with bad data length field 0 with bad checksum 0 with no checksum 48 dropped due to no socket 0 broadcast/multicast datagrams dropped due to no socket 241 dropped due to full socket buffers 0 not for hashed pcb 0 delivered 52 datagrams output > $ netstat -an -p udp # netstat -an -p udp Active Internet connections (including servers) Proto Recv-Q Send-Q Local Address Foreign Address (state) udp4 0 0 10.0.1.14.1068 10.0.1.1.53 udp4 0 0 10.0.1.14.1069 10.0.1.1.53 udp4 0 0 *.68 *.* udp4 0 0 *.* *.* udp4 0 0 *.514 *.* udp6 0 0 *.514 *.* thanks again, Rach >-- >"It's always funny until someone gets hurt. Then it's hilarious." > >Crist J. Clark | cjclark@alum.mit.edu > | cjclark@jhu.edu >http://people.freebsd.org/~cjc/ | cjc@freebsd.org -- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 3:28: 8 2002 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id B9CE437B41D for ; Tue, 8 Jan 2002 03:28:03 -0800 (PST) Received: from localhost ([3ffe:501:100f:10c1:d4aa:da3b:f4ad:fc4]) by shuttle.wide.toshiba.co.jp (8.11.6/8.9.1) with ESMTP id g08BRt353350; Tue, 8 Jan 2002 20:27:56 +0900 (JST) Date: Tue, 08 Jan 2002 20:29:51 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: June Carey , net@FreeBSD.ORG Subject: Re: FreeBSD-4.3 IPv6 bug In-Reply-To: <20020106101326.A44681@xor.obsecurity.org> References: <20020106101326.A44681@xor.obsecurity.org> User-Agent: Wanderlust/2.7.5 (Too Funky) Emacs/21.1 Mule/5.0 (SAKAKI) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.14.3 - "Ushinoya") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 28 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>>>> On Sun, 6 Jan 2002 10:13:26 -0800, >>>>> Kris Kennaway said: >> >b) Provide source code exhibiting the problem, and send it to the >> >net@FreeBSD.org mailing list, which is a more appropriate list for >> >discussion of this problem. >> >> Well, the source code is semi-proprietary, in the sense that I was going to >> release it under a BSD license as an Open Source Project, but haven't got >> around to doing so yet. > Well then, write up a small test application which does the same thing > as the part of your proprietary code which is failing, and which > demonstrates the condition you're showing. > So far you haven't given enough information to diagnose the problem. I don't know what the problem is, but... There have been many changes (fixes) on IPv6 between 4.3 and 4.4, so your problem may have been fixed in 4.4. If we can get enough information to identify the problem, we may be able to give you the answer. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 9:28:49 2002 Delivered-To: freebsd-net@freebsd.org Received: from rwcrmhc52.attbi.com (rwcrmhc52.attbi.com [216.148.227.88]) by hub.freebsd.org (Postfix) with ESMTP id 598A037B404; Tue, 8 Jan 2002 09:28:39 -0800 (PST) Received: from bmah.dyndns.org ([12.233.149.189]) by rwcrmhc52.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020108172834.PMDH20395.rwcrmhc52.attbi.com@bmah.dyndns.org>; Tue, 8 Jan 2002 17:28:34 +0000 Received: (from bmah@localhost) by bmah.dyndns.org (8.11.6/8.11.6) id g08HSXQ75272; Tue, 8 Jan 2002 09:28:33 -0800 (PST) (envelope-from bmah) Message-Id: <200201081728.g08HSXQ75272@bmah.dyndns.org> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: "Nevin E. Leiby" Cc: freebsd-net@FreeBSD.ORG, freebsd-questions@FreeBSD.ORG Subject: Re: Juniper IOS install woes on FreeBSD machine In-reply-to: <011b01c1980c$ace65410$95891581@minipas> References: <5.1.0.14.2.20020108163940.01e6d130@pop.ozemail.com.au> <011b01c1980c$ace65410$95891581@minipas> Comments: In-reply-to "Nevin E. Leiby" message dated "Tue, 08 Jan 2002 01:21:14 -0500." From: "Bruce A. Mah" Reply-To: bmah@FreeBSD.ORG X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A 2V%N&+ X-Image-Url: http://www.employees.org/~bmah/Images/bmah-cisco-small.gif X-Url: http://www.employees.org/~bmah/ Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 08 Jan 2002 09:28:33 -0800 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org If memory serves me right, "Nevin E. Leiby" wrote: > > Umm... doesn't JunOS only run on Juniper hardware (ie. routers)?! > > Though based on the FreeBSD kernel, I'd be surprised if you could > > just run JunOS on a FreeBSD workstation... > ... > > Why would you install JunOS on a workstation? JunOS is developed > > especially for Juniper routers, and I would imagine has drivers writen > > expressly for the hardware that make up a Juniper. > > Understandibly, but we only have access to crisco's 2500s, two or three > 5500s, and thats about it...nothin more than that...=\ We do, however, have > an entire lab full of spare pcs with an abundance of nics, all of which are > compatible with the FreeBSD os... Is there any particular reason that you need to have JunOS for your experiments? Depending on what you want to do, FreeBSD (or your Ciscos) might work just fine for you. > Although similar projects have been duplicated with the Zebra and Linux > Router Project, it seems feasible. Unfortunately, at the moment I cannot > quote any of the previous posts that I have read, a few posts seemed to hint > at the ability to run the juniper code on a freebsd machine without > requiring the juniper hardware. I too express some skepticism that you'll be able to make this work. A Juniper router (well at least the M5 in my lab!) is not just a PC plus some fancy NICs. Do "show chassis hardware" from the CLI on a real Juniper to see what I mean. [snip] > So, wouldn't it be possible to have the freebsd workstation execute the > juniper ios code to have the low-level equivilant of a juniper router?? I think you're a little confused here. IOS is the name of the software that runs on Cisco routers. It's very unusual to have the words "Juniper" and "IOS" next to each other in the same sentence. :-) > I > certainly don't understand all of the specifics, but Im not sure how to go > further from here...It seems as though the only [plausible] option would be > to build the entire junos filesystem as done on a juniper router, then load > the ios image, etc My feeling is that even if this can be made to work, you're largely in uncharted waters. IANAL, but you might also check to make sure you aren't violating some kind of licensing agreement by doing what you're proposing. Bruce. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 9:57:11 2002 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (f180.law11.hotmail.com [64.4.17.180]) by hub.freebsd.org (Postfix) with ESMTP id 2088B37B427; Tue, 8 Jan 2002 09:57:00 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 8 Jan 2002 09:57:00 -0800 Received: from 212.159.185.206 by lw11fd.law11.hotmail.msn.com with HTTP; Tue, 08 Jan 2002 17:57:00 GMT X-Originating-IP: [212.159.185.206] From: "June Carey" To: kris@obsecurity.org Cc: net@freebsd.org, bugs@freebsd.org Subject: FreeBSD-4.3 IPv6 bug - Further information. Date: Tue, 08 Jan 2002 17:57:00 +0000 Mime-Version: 1.0 Content-Type: text/plain; format=flowed Message-ID: X-OriginalArrivalTime: 08 Jan 2002 17:57:00.0643 (UTC) FILETIME=[DF305B30:01C1986D] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >So far you haven't given enough information to diagnose the problem. Actually, I rather think I have given enough information ! :) Here's the full details anyway: System: FreeBSD-4.3/i386 Source code: C++ compiled with stock g++ compiler. Correctly assume that I know how to write Server and Client network software, and that I've been doing it for years. The normal accept(2) call in the context of a listening Server is like this: accept (portDescriptor, &addr, &addrLen) Where "addr" is a: union AP_ServerAddrType { struct sockaddr_in addr; struct sockaddr_in6 addr6; }; And "addrLen" is a: socklen_t addrLen; CLIENT/SERVER CONNECTION RESULTS: ================================= Decimal numbering: In Server IPv4 mode (listening socket sin_family=AF_INET) and a netstat(1) -a showing Proto=tcp4: addrLen=16, addr->addr.sin_family=2 In Server IPv6 mode (listening socket sin_family=AF_INET6) and a netstat(1) -a showing Proto=tcp4: addrLen=28, addr->addr.sin_family=28 In Server IPv6 mode (listening socket sin_family=AF_INET6) and a netstat(1) -a showing Proto=tcp6: addrLen=28, addr->addr.sin_family=28 END OF CLIENT/SERVER CONNECTION RESULTS ======================================= The "bug" is that netstat(1) shows a tcp4 connection between the Server and the Client, but accept(2) is filling out the address structure with a sin_family of 28, when it should be 2 (AF_INET). The other "bug" I've recently discovered, and which is demonstrated above, is that when you've got a tcp4 connection between the Client and the Server, "addrLen" is 28, when it should be 16. Cheers, Robin Carey. > >Kris _________________________________________________________________ Send and receive Hotmail on your mobile device: http://mobile.msn.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 13:40:39 2002 Delivered-To: freebsd-net@freebsd.org Received: from web12307.mail.yahoo.com (web12307.mail.yahoo.com [216.136.173.105]) by hub.freebsd.org (Postfix) with SMTP id CB9AB37B41C for ; Tue, 8 Jan 2002 13:40:35 -0800 (PST) Message-ID: <20020108214035.35901.qmail@web12307.mail.yahoo.com> Received: from [12.233.185.205] by web12307.mail.yahoo.com via HTTP; Tue, 08 Jan 2002 13:40:35 PST Date: Tue, 8 Jan 2002 13:40:35 -0800 (PST) From: Anand Narayanan Reply-To: anandn_98@yahoo.com Subject: Bug in in_pcbbind() with respect to SO_REUSEADDR/SO_REUSEPORT To: freebsd-net@FreeBSD.ORG MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, This is an issue from in_pcb.c v 1.59.2.5 2000/08/16 06:14:23 I just encountered a problem in trying to bind a server address using the SO_REUSEPORT and SO_REUSEADDR option after the first one has been shutdown. Looking into in_pcbbind, I see that if SO_REUSEADDR or SO_REUSEPORT is set, then the variable "wild" is 0. if ((so->so_options & (SO_REUSEADDR|SO_REUSEPORT)) == 0) wild = 1; However, when calling in_pcblookup_local (in the non-multicast case), it seems to ignore the value of wild. if (lport) { ... ... if (so->so_cred->cr_uid != 0 && !IN_MULTICAST(ntohl(sin->sin_addr.s_addr))) { t = in_pcblookup_local(inp->inp_pcbinfo, sin->sin_addr, lport, prison ? 0 : INPLOOKUP_WILDCARD); Shouldn't the last argument to in_pcblookup_local be "wild" instead of INPLOOKUP_WILDCARD? By passing INPLOOKUP_WILDCARD, in_pcblookup_local always ignores the SO_REUSE* options and bind fails. Is this a bug or am I missing something? Any help would be appreciated. -Anand ===== __________________________________________________ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 19:12:50 2002 Delivered-To: freebsd-net@freebsd.org Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4]) by hub.freebsd.org (Postfix) with ESMTP id AEAEC37B405 for ; Tue, 8 Jan 2002 19:12:47 -0800 (PST) Received: from house (cage.simianscience.com [64.7.134.1]) by smtp1.sentex.ca (8.11.6/8.11.6) with SMTP id g093Cjh86623; Tue, 8 Jan 2002 22:12:46 -0500 (EST) (envelope-from mike@sentex.net) From: Mike Tancsa To: "Nevin E. Leiby" Cc: freebsd-net@freebsd.org Subject: Re: Juniper IOS install woes on FreeBSD machine Date: Tue, 08 Jan 2002 22:12:52 -0500 Message-ID: <42dn3u48g4t44an605euf8dp1rr2qquadh@4ax.com> References: <00e501c19800$08a33460$95891581@minipas> In-Reply-To: <00e501c19800$08a33460$95891581@minipas> X-Mailer: Forte Agent 1.8/32.548 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, 07 Jan 2002 23:50:45 -0500, in sentex.lists.freebsd.net you = wrote: >I have begun an research project at my university in hopes of >implementing a network of FreeBSD workstations running JunOS. I seriously doubt it will work. Even if it was possible with x amount of tweaking, I would be very surprised if Juniper would even official = sanction this let alone help you. If you have a whole mess of PCs that you want = to use for routing simulations, stock FreeBSD boxes running Zebra will do = you fine. If you need some of the more esoteric protocols like ISIS or MPLS, you could look at the commercial version of Zebra. But for OSPF, RIP, = BGP, the stock zebra works very well. ---Mike Mike Tancsa (mdtancsa@sentex.net) =09 Sentex Communications Corp, =09 Waterloo, Ontario, Canada "Given enough time, 100 monkeys on 100 routers=20 could setup a national IP network." (KDW2) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 20: 4:34 2002 Delivered-To: freebsd-net@freebsd.org Received: from whizzo.transsys.com (whizzo.TransSys.COM [144.202.42.10]) by hub.freebsd.org (Postfix) with ESMTP id 2FA5337B404 for ; Tue, 8 Jan 2002 20:04:30 -0800 (PST) Received: from whizzo.transsys.com (#6@localhost.transsys.com [127.0.0.1]) by whizzo.transsys.com (8.11.6/8.11.6) with ESMTP id g093fGO30920; Tue, 8 Jan 2002 22:41:16 -0500 (EST) (envelope-from louie@whizzo.transsys.com) Message-Id: <200201090341.g093fGO30920@whizzo.transsys.com> X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4 To: "Nevin E. Leiby" Cc: freebsd-net@FreeBSD.ORG X-Image-URL: http://www.transsys.com/louie/images/louie-mail.jpg From: "Louis A. Mamakos" Subject: Re: Juniper IOS install woes on FreeBSD machine References: <00e501c19800$08a33460$95891581@minipas> <42dn3u48g4t44an605euf8dp1rr2qquadh@4ax.com> In-reply-to: Your message of "Tue, 08 Jan 2002 22:12:52 EST." <42dn3u48g4t44an605euf8dp1rr2qquadh@4ax.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Tue, 08 Jan 2002 22:41:16 -0500 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Juniper had (and probably does) a version of JunOS that runs on PC platforms with Ethernet (and some others) network interfaces. I've used this in the past for some interoperability testing and qualification activities. However, JunOS and the routing protocol stack represent intellectual property of considerable value to Juniper in addition to the whizzy hardware they build. You should ensure that you're not violating the software license for copies of JunOS that you got with your router. I don't know if Juniper would be interested in supporting this sort of project or not; your probably ought to ask them, likely working through your sales channel. I don't know if they have a typical packaging of software in the form that you need or not. Just a Juniper customer, louie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 21:18:10 2002 Delivered-To: freebsd-net@freebsd.org Received: from mgw-x1.nokia.com (mgw-x1.nokia.com [131.228.20.21]) by hub.freebsd.org (Postfix) with ESMTP id AC97937B400 for ; Tue, 8 Jan 2002 21:18:06 -0800 (PST) Received: from esvir05nok.ntc.nokia.com (esvir05nokt.ntc.nokia.com [172.21.143.37]) by mgw-x1.nokia.com (Switch-2.1.0/Switch-2.1.0) with ESMTP id g095HrC21159 for ; Wed, 9 Jan 2002 07:17:54 +0200 (EET) Received: from esebh01nok.ntc.nokia.com (unverified) by esvir05nok.ntc.nokia.com (Content Technologies SMTPRS 4.2.5) with ESMTP id ; Wed, 9 Jan 2002 07:18:04 +0200 Received: by esebh01nok with Internet Mail Service (5.5.2652.78) id ; Wed, 9 Jan 2002 07:18:04 +0200 Message-ID: <4AE1AC3D692F55488F2D03518907B8AD1D3BDF@beebe001.NOE.Nokia.com> From: chunan.li@nokia.com To: louie@TransSys.COM, nel9996@ritvax.rit.edu Cc: freebsd-net@freebsd.org Subject: RE: Juniper IOS install woes on FreeBSD machine Date: Wed, 9 Jan 2002 07:17:16 +0200 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2652.78) content-class: urn:content-classes:message Content-Type: text/plain; charset="ISO-8859-1" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello Could you please tell me where I can download the JunOS? I am planing to use it in my protocol testing network. Thanx! BR. Li ChunAn ---------------------------------------------------- Advanced Internet Technologies Group Communication Systems Laboratory Nokia Research Center No.11, Hepingli Dongjie, Beijing, 100013 Email: chunan.li@nokia.com MP: +86 13601028331 -----Original Message----- From: ext Louis A. Mamakos [mailto:louie@TransSys.COM] Sent: Wednesday, January 09, 2002 11:41 AM To: Nevin E. Leiby Cc: freebsd-net@FreeBSD.ORG Subject: Re: Juniper IOS install woes on FreeBSD machine Juniper had (and probably does) a version of JunOS that runs on PC platforms with Ethernet (and some others) network interfaces. I've used this in the past for some interoperability testing and qualification activities. However, JunOS and the routing protocol stack represent intellectual property of considerable value to Juniper in addition to the whizzy hardware they build. You should ensure that you're not violating the software license for copies of JunOS that you got with your router. I don't know if Juniper would be interested in supporting this sort of project or not; your probably ought to ask them, likely working through your sales channel. I don't know if they have a typical packaging of software in the form that you need or not. Just a Juniper customer, louie To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 22:50:40 2002 Delivered-To: freebsd-net@freebsd.org Received: from hotmail.com (oe34.law14.hotmail.com [64.4.20.91]) by hub.freebsd.org (Postfix) with ESMTP id 02ABF37B41C; Tue, 8 Jan 2002 22:50:37 -0800 (PST) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Tue, 8 Jan 2002 22:50:36 -0800 X-Originating-IP: [131.179.136.73] From: "Giovanni Pau" To: , , Subject: Very High Speed TCP Session ... How I can achieve ? Date: Tue, 8 Jan 2002 22:50:34 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 09 Jan 2002 06:50:36.0840 (UTC) FILETIME=[F165F280:01C198D9] Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I would like to have a very High Throughput TCP session Between two Free-BSD but I'm unable to get Socket buffer larger than 256 Kbytes. My test scenario is a bulk FTP in a (totally empty) test Pipe of 1 Gbit/s and 170 ms of delay so my pipe size over 2 Mbytes. Thanks for any suggestion or reference you can give. /Giovanni. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 23: 3: 7 2002 Delivered-To: freebsd-net@freebsd.org Received: from elvis.mu.org (elvis.mu.org [216.33.66.196]) by hub.freebsd.org (Postfix) with ESMTP id B7BAF37B416 for ; Tue, 8 Jan 2002 23:03:05 -0800 (PST) Received: by elvis.mu.org (Postfix, from userid 1098) id 488EF81D03; Wed, 9 Jan 2002 01:03:00 -0600 (CST) Date: Wed, 9 Jan 2002 01:03:00 -0600 From: Bill Fumerola To: chunan.li@nokia.com Cc: louie@TransSys.COM, freebsd-net@freebsd.org Subject: Re: Juniper IOS install woes on FreeBSD machine Message-ID: <20020109010300.D4417@elvis.mu.org> References: <4AE1AC3D692F55488F2D03518907B8AD1D3BDF@beebe001.NOE.Nokia.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <4AE1AC3D692F55488F2D03518907B8AD1D3BDF@beebe001.NOE.Nokia.com>; from chunan.li@nokia.com on Wed, Jan 09, 2002 at 07:17:16AM +0200 X-Operating-System: FreeBSD 4.4-FEARSOME-20011125 i386 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 09, 2002 at 07:17:16AM +0200, chunan.li@nokia.com wrote: > Hello > > Could you please tell me where I can download the JunOS? > I am planing to use it in my protocol testing network. you successfully missed the entire point of louie's well written mail. i'll summarize in my own special way: JUNOS IS PROPRIETARY SOFTWARE THAT SHIPS WITH JUNIPER ROUTERS AND JUST BECAUSE YOU CAN PHYSICALLY EXTRACT IT FROM THE ROUTER AND PLACE IT ON A PC DOES NOT GIVE YOU THE RIGHT TO DO THAT. just another happy juniper customer, -- - bill fumerola / fumerola@yahoo-inc.com / billf@FreeBSD.org / billf@mu.org - my anger management counselor can beat up your self-affirmation therapist To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Tue Jan 8 23:57:23 2002 Delivered-To: freebsd-net@freebsd.org Received: from sirius.pc.cis.udel.edu (sirius.pc.cis.udel.edu [128.4.133.24]) by hub.freebsd.org (Postfix) with ESMTP id EECBC37B419; Tue, 8 Jan 2002 23:57:17 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by sirius.pc.cis.udel.edu (8.11.3/8.11.3) with ESMTP id g097uGg24389; Wed, 9 Jan 2002 02:56:16 -0500 (EST) (envelope-from jain@sirius.pc.cis.udel.edu) Date: Wed, 9 Jan 2002 02:56:16 -0500 (EST) From: Manish Jain To: Giovanni Pau Cc: , , Subject: Re: Very High Speed TCP Session ... How I can achieve ? In-Reply-To: Message-ID: <20020109022052.E22562-100000@sirius.pc.cis.udel.edu> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hello, I tried setting socket buffer to 300 k and and am able to do it. What error do you get when you try to set socket buffer larger than 256 k. What is the version of freebsd u r using ? manish http://www.cis.udel.edu/~jain On Tue, 8 Jan 2002, Giovanni Pau wrote: > I would like to have a very High Throughput TCP session Between two Free-BSD > but I'm unable to get Socket buffer larger than 256 Kbytes. > > My test scenario is a bulk FTP in a (totally empty) test Pipe of > 1 Gbit/s and 170 ms of delay so my pipe size over 2 Mbytes. > > Thanks for any suggestion or reference you can give. > > /Giovanni. > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 1:41:21 2002 Delivered-To: freebsd-net@freebsd.org Received: from patan.sun.com (patan.Sun.COM [192.18.98.43]) by hub.freebsd.org (Postfix) with ESMTP id C4D2A37B420; Wed, 9 Jan 2002 01:41:13 -0800 (PST) Received: from sunchorus.France.Sun.COM ([129.157.173.1]) by patan.sun.com (8.9.3+Sun/8.9.3) with ESMTP id CAA20187; Wed, 9 Jan 2002 02:40:53 -0700 (MST) Received: from dvorak (dvorak [129.157.196.32]) by sunchorus.France.Sun.COM (8.8.8+Sun/8.8.8/ENSMAIL,v2.1) with SMTP id KAA03750; Wed, 9 Jan 2002 10:41:10 +0100 (MET) Message-Id: <200201090941.KAA03750@sunchorus.France.Sun.COM> Date: Wed, 9 Jan 2002 10:41:10 +0100 (MET) From: Stephane Carrez Reply-To: Stephane Carrez Subject: Re: FreeBSD-4.3 IPv6 bug - Further information. To: kris@obsecurity.org, carey_june@hotmail.com Cc: net@FreeBSD.ORG, bugs@FreeBSD.ORG MIME-Version: 1.0 Content-Type: TEXT/plain; charset=us-ascii Content-MD5: 8yJVGyhjDQFh08tZi608lA== X-Mailer: dtmail 1.3.0 @(#)CDE Version 1.4 SunOS 5.8 sun4u sparc Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi! June Carey wrote: >The "bug" is that netstat(1) shows a tcp4 connection between the Server and >the Client, but accept(2) is filling out the address structure with a >sin_family of 28, when it should be 2 (AF_INET). > >The other "bug" I've recently discovered, and which is demonstrated above, >is that when you've got a tcp4 connection between the Client and the Server, >"addrLen" is 28, when it should be 16. > I don't think this is a bug. Assuming that the server accepting socket is AF_INET6, you should do the following on the socket: int on; on = 1; setsockopt(fd, IPPROTO_IPV6, IPV6_BINDV6ONLY, &on, sizeof(on)); Otherwise, the inpcb is marked with INP_IPV4 which means the IPv4 packet can be received by the socket. The address is then mapped to IPv6 because the socket is AF_INET6. Cheers, Stephane - - - - - - - - - - Stephane |Sun Microsystems | Carrez |Network Service Provider Division | http://www.sun.com |6 avenue Gustave Eiffel | |F-78182, St-Quentin-en-Yvelines-Cedex | email: Stephane.Carrez@France.Sun.COM To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 4:30:33 2002 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 5141837B41E for ; Wed, 9 Jan 2002 04:30:04 -0800 (PST) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g09CTWq66127; Wed, 9 Jan 2002 14:29:32 +0200 (EET) (envelope-from ru) Date: Wed, 9 Jan 2002 14:29:32 +0200 From: Ruslan Ermilov To: Josef Karthauser Cc: Yusuf Goolamabbas , freebsd-net@FreeBSD.ORG Subject: Re: Is there a way to clear stats from netstat -i Message-ID: <20020109142932.K41379@sunbay.com> References: <20011211123504.A5909@outblaze.com> <20011219182139.A9340@tao.org.uk> <20011220151038.G6625@sunbay.com> <20011228133044.C485@tao.org.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20011228133044.C485@tao.org.uk> User-Agent: Mutt/1.3.23i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, Dec 28, 2001 at 01:30:44PM +0000, Josef Karthauser wrote: > On Thu, Dec 20, 2001 at 03:10:38PM +0200, Ruslan Ermilov wrote: > > On Wed, Dec 19, 2001 at 06:21:39PM +0000, Josef Karthauser wrote: > > > Hi Ruslan, > > > > > > You've been near this code recently. Do you have any suggestions for > > > how this may work? > > > > > This would require a new SIOCCIFDATA ioctl in group 'i'. > > What's group 'i'? > _IO*()'s macro first argument. See for details. 's' refers to socket level ioctls, 'r' to routing ioctls, and 'i' to interface ioctls. Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 5: 6:25 2002 Delivered-To: freebsd-net@freebsd.org Received: from tao.org.uk (genius.tao.org.uk [212.135.162.51]) by hub.freebsd.org (Postfix) with ESMTP id 9727A37B402; Wed, 9 Jan 2002 05:06:20 -0800 (PST) Received: by tao.org.uk (Postfix, from userid 100) id 340CB4C7; Wed, 9 Jan 2002 13:06:12 +0000 (GMT) Date: Wed, 9 Jan 2002 13:06:12 +0000 From: Josef Karthauser To: Ruslan Ermilov Cc: Josef Karthauser , Yusuf Goolamabbas , freebsd-net@FreeBSD.ORG Subject: Re: Is there a way to clear stats from netstat -i Message-ID: <20020109130612.B73699@genius.tao.org.uk> References: <20011211123504.A5909@outblaze.com> <20011219182139.A9340@tao.org.uk> <20011220151038.G6625@sunbay.com> <20011228133044.C485@tao.org.uk> <20020109142932.K41379@sunbay.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="CdrF4e02JqNVZeln" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020109142932.K41379@sunbay.com>; from ru@FreeBSD.ORG on Wed, Jan 09, 2002 at 02:29:32PM +0200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --CdrF4e02JqNVZeln Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Jan 09, 2002 at 02:29:32PM +0200, Ruslan Ermilov wrote: > On Fri, Dec 28, 2001 at 01:30:44PM +0000, Josef Karthauser wrote: > > On Thu, Dec 20, 2001 at 03:10:38PM +0200, Ruslan Ermilov wrote: > > > On Wed, Dec 19, 2001 at 06:21:39PM +0000, Josef Karthauser wrote: > > > > Hi Ruslan, > > > >=20 > > > > You've been near this code recently. Do you have any suggestions f= or > > > > how this may work? > > > >=20 > > > This would require a new SIOCCIFDATA ioctl in group 'i'. > >=20 > > What's group 'i'? > >=20 > _IO*()'s macro first argument. See for details. > 's' refers to socket level ioctls, 'r' to routing ioctls, and > 'i' to interface ioctls. Ahha! :) Ignore my last email. I'll digest this first ;) Thanks, Joe --CdrF4e02JqNVZeln Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iEYEARECAAYFAjw8QEMACgkQXVIcjOaxUBYlGgCgi3FcWPw0MyiszrX5dpekHwLW 4SwAoIKfvCqhphEKAoORUmJE+HlBGBKO =GhqF -----END PGP SIGNATURE----- --CdrF4e02JqNVZeln-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 9: 8:41 2002 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 9AEAB37B416; Wed, 9 Jan 2002 09:08:32 -0800 (PST) Received: from localhost ([3ffe:501:100f:13ff::a]) by shuttle.wide.toshiba.co.jp (8.11.6/8.9.1) with ESMTP id g09H8M363565; Thu, 10 Jan 2002 02:08:22 +0900 (JST) Date: Thu, 10 Jan 2002 02:10:18 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: "June Carey" Cc: net@FreeBSD.ORG, bugs@FreeBSD.ORG Subject: Re: FreeBSD-4.3 IPv6 bug - Further information. In-Reply-To: References: User-Agent: Wanderlust/2.7.5 (Too Funky) Emacs/21.1 Mule/5.0 (SAKAKI) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.14.3 - "Ushinoya") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 36 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>>>> On Tue, 08 Jan 2002 17:57:00 +0000, >>>>> "June Carey" said: > END OF CLIENT/SERVER CONNECTION RESULTS > ======================================= > The "bug" is that netstat(1) shows a tcp4 connection between the Server and > the Client, but accept(2) is filling out the address structure with a > sin_family of 28, when it should be 2 (AF_INET). > The other "bug" I've recently discovered, and which is demonstrated above, > is that when you've got a tcp4 connection between the Client and the Server, > "addrLen" is 28, when it should be 16. Well, unfortunately, this behavior is not a bug. An AF_INET6 socket can accept an IPv4 connection with IPv4-mapped IPv6 addresses, as specified in draft-ietf-ipngwg-rfc2553bis-04.txt. In this case, of course, the sa_family field is AF_INET6, and the sa_len field is sizeof(sockaddr_in6). FreeBSD 4.4-RELEASE has a partial support to disable this feature by the IPV6_V6ONLY option, which, as far as I know, is not included in FreeBSD 4.3. If you do not want to accept an IPv4 connection on an AF_INET6 socket, I'd recommend you to migrate to FreeBSD 4.4 and rewrite the application with the option. By the way, detail behaviors about IPv4-mapped IPv6 addresses are very different among various OSes, so you should be careful if you want to make your applications portable on other OSes. You may also want to check at the following web page to see the differences: http://www.kame.net/newsletter/20010504/ JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 9:14:13 2002 Delivered-To: freebsd-net@freebsd.org Received: from shuttle.wide.toshiba.co.jp (shuttle.wide.toshiba.co.jp [202.249.10.124]) by hub.freebsd.org (Postfix) with ESMTP id 2249C37B416; Wed, 9 Jan 2002 09:14:05 -0800 (PST) Received: from localhost ([3ffe:501:100f:13ff::a]) by shuttle.wide.toshiba.co.jp (8.11.6/8.9.1) with ESMTP id g09HDe363635; Thu, 10 Jan 2002 02:13:44 +0900 (JST) Date: Thu, 10 Jan 2002 02:15:36 +0900 Message-ID: From: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= To: Stephane Carrez Cc: kris@obsecurity.org, carey_june@hotmail.com, net@FreeBSD.ORG, bugs@FreeBSD.ORG Subject: Re: FreeBSD-4.3 IPv6 bug - Further information. In-Reply-To: <200201090941.KAA03750@sunchorus.France.Sun.COM> References: <200201090941.KAA03750@sunchorus.France.Sun.COM> User-Agent: Wanderlust/2.7.5 (Too Funky) Emacs/21.1 Mule/5.0 (SAKAKI) Organization: Research & Development Center, Toshiba Corp., Kawasaki, Japan. MIME-Version: 1.0 (generated by SEMI 1.14.3 - "Ushinoya") Content-Type: text/plain; charset=US-ASCII X-Dispatcher: imput version 980905(IM100) Lines: 22 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>>>> On Wed, 9 Jan 2002 10:41:10 +0100 (MET), >>>>> Stephane Carrez said: > Assuming that the server accepting socket is AF_INET6, you should do > the following on the socket: > int on; > on = 1; > setsockopt(fd, IPPROTO_IPV6, IPV6_BINDV6ONLY, > &on, sizeof(on)); Correct, but IPV6_BINDV6ONLY is FreeBSD (4.3) specific, so I'd recommend to use IPV6_V6ONLY on FreeBSD 4.4. The latter one is defined in a public specification "draft-ietf-ipngwg-rfc2553bis-04.txt", and we can expect wider portability with it. JINMEI, Tatuya Communication Platform Lab. Corporate R&D Center, Toshiba Corp. jinmei@isl.rdc.toshiba.co.jp To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 9:23:16 2002 Delivered-To: freebsd-net@freebsd.org Received: from cheer.mahoroba.org (flets-f0064.kamome.or.jp [211.8.127.64]) by hub.freebsd.org (Postfix) with ESMTP id 2086237B416; Wed, 9 Jan 2002 09:23:07 -0800 (PST) Received: from mille.mahoroba.org (IDENT:jfekXEazPOh8b2IP02bkJ3/CU6Grewd8PaHm5vJ2OaYzB5l/y8KAkB7Q8TB1Uzlk@mille.mahoroba.org [IPv6:2001:200:301:0:202:2dff:fe0a:6bee]) (user=ume mech=CRAM-MD5 bits=0) by cheer.mahoroba.org (8.12.1/8.12.1) with ESMTP/inet6 id g09HNEeo038680 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO); Thu, 10 Jan 2002 02:23:14 +0900 (JST) (envelope-from ume@mahoroba.org) Date: Thu, 10 Jan 2002 02:23:01 +0900 Message-ID: From: Hajimu UMEMOTO To: JINMEI Tatuya / =?ISO-2022-JP?B?GyRCP0BMQEMjOkgbKEI=?= Cc: "June Carey" , net@FreeBSD.ORG, bugs@FreeBSD.ORG Subject: Re: FreeBSD-4.3 IPv6 bug - Further information. In-Reply-To: References: User-Agent: xcite1.38> Wanderlust/2.8.1 (Something) SEMI/1.14.3 (Ushinoya) FLIM/1.14.3 (=?ISO-8859-4?Q?Unebigory=F2mae?=) APEL/10.3 Emacs/21.1 (i386--freebsd) MULE/5.0 (=?ISO-2022-JP?B?GyRCOC1MWhsoQg==?=) X-Operating-System: FreeBSD 4.5-PRERELEASE MIME-Version: 1.0 (generated by SEMI 1.14.3 - "Ushinoya") Content-Type: text/plain; charset=US-ASCII X-Virus-Scanned: by AMaViS-perl11-milter (http://amavis.org/) Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >>> Thu, 10 Jan 2002 02:10:18 +0900, >>> JINMEI Tatuya said: jinmei> FreeBSD 4.4-RELEASE has a partial support to disable this feature by jinmei> the IPV6_V6ONLY option, which, as far as I know, is not included in jinmei> FreeBSD 4.3. If you do not want to accept an IPv4 connection on an jinmei> AF_INET6 socket, I'd recommend you to migrate to FreeBSD 4.4 and jinmei> rewrite the application with the option. 4.3 has it also but it is different name. You can use IPV6_BINDV6ONLY under 4.3 for this purpose. 4.4 has it also for backward compatibility. IPV6_BINDV6ONLY may nuked in the future. -- Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan ume@mahoroba.org ume@bisd.hitachi.co.jp ume@{,jp.}FreeBSD.org http://www.imasy.org/~ume/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 14:15: 9 2002 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id 9F70537B41C; Wed, 9 Jan 2002 14:15:05 -0800 (PST) Received: from arch20m.dellroad.org (arch20m.dellroad.org [10.1.1.20]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id OAA00446; Wed, 9 Jan 2002 14:01:08 -0800 (PST) Received: (from archie@localhost) by arch20m.dellroad.org (8.11.6/8.11.6) id g09M0rB48288; Wed, 9 Jan 2002 14:00:53 -0800 (PST) (envelope-from archie) From: Archie Cobbs Message-Id: <200201092200.g09M0rB48288@arch20m.dellroad.org> Subject: Duplex fix for xmphyreg.h To: freebsd-net@freebsd.org Date: Wed, 9 Jan 2002 14:00:53 -0800 (PST) Cc: wpaul@freebsd.org X-Mailer: ELM [version 2.4ME+ PL88 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does anybody object to the patch below? It fixes two reversed bit definitions for the duplex mode in sys/dev/mii/xmphyreg.h. Thanks, -Archie Reference: XaQti XQ11800FP data sheet, sections 6.0.43 and 6.0.44 __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com Index: src/sys/dev/mii/xmphyreg.h =================================================================== RCS file: /home/ncvs/src/sys/dev/mii/xmphyreg.h,v retrieving revision 1.2 diff -u -r1.2 xmphyreg.h --- xmphyreg.h 23 May 2001 22:10:55 -0000 1.2 +++ xmphyreg.h 9 Jan 2002 21:58:30 -0000 @@ -61,16 +61,16 @@ #define XMPHY_ANAR_ACK 0x4000 /* Next page or base received */ #define XMPHY_ANAR_RFBITS 0x3000 /* Remote fault bits */ #define XMPHY_ANAR_PAUSEBITS 0x0180 /* Pause bits */ -#define XMPHY_ANAR_FDX 0x0040 /* Select full duplex */ -#define XMPHY_ANAR_HDX 0x0020 /* Select half duplex */ +#define XMPHY_ANAR_HDX 0x0040 /* Select half duplex */ +#define XMPHY_ANAR_FDX 0x0020 /* Select full duplex */ #define XMPHY_MII_ANLPAR 0x05 #define XMPHY_ANLPAR_NP 0x8000 /* Next page */ #define XMPHY_ANLPAR_ACK 0x4000 /* Next page or base received */ #define XMPHY_ANLPAR_RFBITS 0x3000 /* Remote fault bits */ #define XMPHY_ANLPAR_PAUSEBITS 0x0180 /* Pause bits */ -#define XMPHY_ANLPAR_FDX 0x0040 /* Select full duplex */ -#define XMPHY_ANLPAR_HDX 0x0020 /* Select half duplex */ +#define XMPHY_ANLPAR_HDX 0x0040 /* Select half duplex */ +#define XMPHY_ANLPAR_FDX 0x0020 /* Select full duplex */ #define XMPHY_RF_OK 0x0000 /* No error -- link is good */ #define XMPHY_RF_LINKFAIL 0x1000 /* Link failure */ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Wed Jan 9 21: 2:38 2002 Delivered-To: freebsd-net@freebsd.org Received: from smtp6.mindspring.com (smtp6.mindspring.com [207.69.200.110]) by hub.freebsd.org (Postfix) with ESMTP id C028137B402 for ; Wed, 9 Jan 2002 21:02:35 -0800 (PST) Received: from user-uiveq93.dsl.mindspring.com ([165.247.105.35] helo=mindspring.com) by smtp6.mindspring.com with esmtp (Exim 3.33 #1) id 16OXMI-0005BD-00; Thu, 10 Jan 2002 00:02:34 -0500 Message-ID: <3C3C7743.6F6E982B@mindspring.com> Date: Wed, 09 Jan 2002 12:00:51 -0500 From: Naga R Narayanaswamy X-Mailer: Mozilla 4.76 [en] (X11; U; FreeBSD 4.4-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: FreeBSD-Net Subject: ng_pppoe and ng_bridge Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, When I run ng_bridge between 2 ethernet interfaces and then initiate a PPPoE session using ng_pppoe, the ppp fails and I repeatedly get the following message: Jan 9 11:28:55 guru ppp[387]: Warning: [1]: Cannot create PPPoE netgraph node: Socket is already connected Jan 9 11:28:55 guru ppp[387]: Warning: deflink: Device (PPPoE:rl0:service_name) must begin with a '/', a '!' or contain at least one ':' The ppp.conf has set device PPPoE:rl0:service_name and I use the bridge script on /usr/share/examples/netgraph/ether.bridge The ng_bridge is between rl0 and dc1 ethernet interfaces. The pppoe will originate with rl0's mac address and it will be bridged to dc1 interface and sent to the access concentrator. The ng_bridge itself is functioning correctly as I have verified with ping and other data traffic. Without ng_bridge, pppoe also works correctly. When both are combined, them the problem. Any clues ? I have tried this on 4.3-RELEASE and 5.0-CURRENT. Same results. Do I have to do something extra for ng_pppoe to use a ethernet interface on which ng_bridge is also active. Thanks Naga To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Jan 10 4:49:28 2002 Delivered-To: freebsd-net@freebsd.org Received: from smtp011.mail.yahoo.com (smtp011.mail.yahoo.com [216.136.173.31]) by hub.freebsd.org (Postfix) with SMTP id D59ED37B419 for ; Thu, 10 Jan 2002 04:49:21 -0800 (PST) Received: from unknown (HELO kshitij1) (203.124.128.243) by smtp.mail.vip.sc5.yahoo.com with SMTP; 10 Jan 2002 12:48:47 -0000 From: "Kshitij Gunjikar" To: Subject: IP input Options processing Date: Thu, 10 Jan 2002 18:28:14 +0530 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi All, I have a question in the IP input code. If we are able to find the next for a source routed packet why do we change the destination address of the packet. in the file ip_input.c we have the code ip->ip_dst = ipaddr.sin_addr; (void)memcpy(cp + off, &(IA_SIN(ia)->sin_addr), sizeof(struct in_addr)); cp[IPOPT_OFFSET] += sizeof(struct in_addr); /* * Let ip_intr's mcast routing check handle mcast pkts */ forward = !IN_MULTICAST(ntohl(ip->ip_dst.s_addr)); break; Regards Kshitij _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Jan 10 13:30: 6 2002 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.dellroad.org (adsl-63-194-81-26.dsl.snfc21.pacbell.net [63.194.81.26]) by hub.freebsd.org (Postfix) with ESMTP id AD79E37B405 for ; Thu, 10 Jan 2002 13:30:03 -0800 (PST) Received: from arch20m.dellroad.org (arch20m.dellroad.org [10.1.1.20]) by InterJet.dellroad.org (8.9.1a/8.9.1) with ESMTP id NAA07790; Thu, 10 Jan 2002 13:24:46 -0800 (PST) Received: (from archie@localhost) by arch20m.dellroad.org (8.11.6/8.11.6) id g0ALOTZ52431; Thu, 10 Jan 2002 13:24:29 -0800 (PST) (envelope-from archie) From: Archie Cobbs Message-Id: <200201102124.g0ALOTZ52431@arch20m.dellroad.org> Subject: Re: ng_pppoe and ng_bridge In-Reply-To: <3C3C7743.6F6E982B@mindspring.com> "from Naga R Narayanaswamy at Jan 9, 2002 12:00:51 pm" To: Naga R Narayanaswamy Date: Thu, 10 Jan 2002 13:24:29 -0800 (PST) Cc: FreeBSD-Net X-Mailer: ELM [version 2.4ME+ PL88 (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Naga R Narayanaswamy writes: > When I run ng_bridge between 2 ethernet interfaces and then > initiate a PPPoE session using ng_pppoe, the ppp fails and > I repeatedly get the following message: > > Jan 9 11:28:55 guru ppp[387]: Warning: [1]: Cannot create PPPoE > netgraph node: Socket is already connected ng_bridge and ppp probably want to connect to the same hook on the ng_ether node. You'd have to figure out how to make ppp connect the ng_pppoe node to the ng_bridge node rather than directly to the ng_ether node. -Archie __________________________________________________________________________ Archie Cobbs * Packet Design * http://www.packetdesign.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Thu Jan 10 14: 0:15 2002 Delivered-To: freebsd-net@freebsd.org Received: from rwcrmhc53.attbi.com (rwcrmhc53.attbi.com [204.127.198.39]) by hub.freebsd.org (Postfix) with ESMTP id 2135137B43B for ; Thu, 10 Jan 2002 14:00:11 -0800 (PST) Received: from InterJet.elischer.org ([12.232.206.8]) by rwcrmhc53.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020110220010.UNMW10199.rwcrmhc53.attbi.com@InterJet.elischer.org>; Thu, 10 Jan 2002 22:00:10 +0000 Received: from localhost (localhost.elischer.org [127.0.0.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id NAA59127; Thu, 10 Jan 2002 13:46:58 -0800 (PST) Date: Thu, 10 Jan 2002 13:46:57 -0800 (PST) From: Julian Elischer To: Archie Cobbs Cc: Naga R Narayanaswamy , FreeBSD-Net Subject: Re: ng_pppoe and ng_bridge In-Reply-To: <200201102124.g0ALOTZ52431@arch20m.dellroad.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org hmmm that may be problematical, because pppoe relies on the transmitting interface to set the source MAC address. you may be able to do it with the ng_etf node. (ether-type_filter) filter pppoe packets to pppoe and all others to the bridge. julian (p.s. etf is only in current but I have a 4.x version somewhere) On Thu, 10 Jan 2002, Archie Cobbs wrote: > Naga R Narayanaswamy writes: > > When I run ng_bridge between 2 ethernet interfaces and then > > initiate a PPPoE session using ng_pppoe, the ppp fails and > > I repeatedly get the following message: > > > > Jan 9 11:28:55 guru ppp[387]: Warning: [1]: Cannot create PPPoE > > netgraph node: Socket is already connected > > ng_bridge and ppp probably want to connect to the same > hook on the ng_ether node. > > You'd have to figure out how to make ppp connect the > ng_pppoe node to the ng_bridge node rather than > directly to the ng_ether node. > > -Archie > > __________________________________________________________________________ > Archie Cobbs * Packet Design * http://www.packetdesign.com > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 2:55: 2 2002 Delivered-To: freebsd-net@freebsd.org Received: from web20707.mail.yahoo.com (web20707.mail.yahoo.com [216.136.226.180]) by hub.freebsd.org (Postfix) with SMTP id 564D937B41C for ; Fri, 11 Jan 2002 02:54:57 -0800 (PST) Message-ID: <20020111105457.36073.qmail@web20707.mail.yahoo.com> Received: from [203.200.20.35] by web20707.mail.yahoo.com via HTTP; Fri, 11 Jan 2002 10:54:57 GMT Date: Fri, 11 Jan 2002 10:54:57 +0000 (GMT) From: =?iso-8859-1?q?vishwanath=20pargaonkar?= Subject: ipv6 help!! To: freebsd-hackers@freebsd.org, freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I have freebsd 4.2. I configured prefixes as follows. prefix rl0 3ffe:501:ffff:100:: and prefix rl0 3ffe:501:ffff:100:: prefixlen 32 I got some error messages. But when i checked ndp and ifconfig rl0 two prefixes and two addresses were there. Now when i delete them by prefix rl0 delete 3ffe:501:ffff:100:: and prefix rl0 delete 3ffe:501:ffff:100:: prefixlen 32 the address formed from the prefix of prefixlength 32 does not get deleted. Can anybody tell me why is this is happening? Is this a bug in freebsd? If this is a bug and has been already fixed, kindly mail me the link. One more thing, I talked about the error message it is like this for the prefix of length 32 it is giving the message that address is already formed and in6_control failed because address is already in use(EADDRINUSE). I feel that the address formed from the same prefix but of different lengths (in this case 64 and 32) are differnet. So how is this message comming? Kindly update me on this. regards ravi prasad To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 5:53:25 2002 Delivered-To: freebsd-net@freebsd.org Received: from whale.sunbay.crimea.ua (whale.sunbay.crimea.ua [212.110.138.65]) by hub.freebsd.org (Postfix) with ESMTP id 1769737B4D3; Fri, 11 Jan 2002 05:53:03 -0800 (PST) Received: (from ru@localhost) by whale.sunbay.crimea.ua (8.11.6/8.11.2) id g0BDq0C54304; Fri, 11 Jan 2002 15:52:00 +0200 (EET) (envelope-from ru) Date: Fri, 11 Jan 2002 15:52:00 +0200 From: Ruslan Ermilov To: Jan Oravec Cc: bug-followup@FreeBSD.org, net@FreeBSD.org Subject: Re: kern/33747: bug in rt socket Message-ID: <20020111155200.B49408@sunbay.com> References: <200201100103.g0A13Mw46469@freefall.freebsd.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <200201100103.g0A13Mw46469@freefall.freebsd.org> User-Agent: Mutt/1.3.23i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 09, 2002 at 05:03:22PM -0800, Jan Oravec wrote: > > there is a bug in rt socket in kernel, file net/rtsock.c: > > function rt_ifmsg contains: > ifm->ifm_addrs = 0; > > we should set RTA_IFP attribute instead and send interface name, > because information that some interface has been created without > name of interface is unusable. > I wouldn't call it a bug, but rather a design issue. In BSD, rt_ifmsg() doesn't set any sockaddrs, and this is documented in Stevens' TCP/IP Illustrated Vol. 2 on the bottom of page 627. What made you think we SHOULD supply IFP to this message? Usually, daemons remember interface index (see natd(8) for a working example), and on receipt of an RTM_IFINFO message with a matching ifm_index, some actions take place. > openbsd haven't this bug > I've looked into the latest revisions of rtsock.c in OpenBSD, NetBSD and BSD/OS; they all do not seem to set any sockaddrs in "info" before calling rt_msg1(), and all set ifm_addrs = 0. Are you sure you're not looking at some locally modified OpenBSD sources? > >Fix: > ifm->ifm_addrs = RTA_IFP; > and some other code to send name of interface... > The fix is rather trivial but I don't think we should commit it, for the reasons specified above. Index: rtsock.c =================================================================== RCS file: /home/ncvs/src/sys/net/rtsock.c,v retrieving revision 1.63 diff -u -p -r1.63 rtsock.c --- rtsock.c 2001/12/19 16:05:27 1.63 +++ rtsock.c 2002/01/11 13:51:29 @@ -747,6 +747,7 @@ rt_ifmsg(ifp) if (route_cb.any_count == 0) return; bzero((caddr_t)&info, sizeof(info)); + ifpaddr = TAILQ_FIRST(&ifp->if_addrhead)->ifa_addr; m = rt_msg1(RTM_IFINFO, &info); if (m == 0) return; @@ -754,7 +755,7 @@ rt_ifmsg(ifp) ifm->ifm_index = ifp->if_index; ifm->ifm_flags = (u_short)ifp->if_flags; ifm->ifm_data = ifp->if_data; - ifm->ifm_addrs = 0; + ifm->ifm_addrs = info.rti_addrs; route_proto.sp_protocol = 0; raw_input(m, &route_proto, &route_src, &route_dst); } Cheers, -- Ruslan Ermilov Oracle Developer/DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 7:53:18 2002 Delivered-To: freebsd-net@freebsd.org Received: from willers.employees.org (willers.employees.org [128.107.241.167]) by hub.freebsd.org (Postfix) with ESMTP id 7F13537B417 for ; Fri, 11 Jan 2002 07:53:09 -0800 (PST) Received: from localhost (cjtt@localhost) by willers.employees.org (8.12.1/8.12.1) with SMTP id g0BFr8H9024128 for ; Fri, 11 Jan 2002 07:53:09 -0800 (PST) Date: Fri, 11 Jan 2002 07:53:08 -0800 (PST) From: CJTT To: freebsd-net@FreeBSD.ORG Subject: Re: ti driver, vlan and tcpdump In-Reply-To: <20011116090635.A31992@Odin.AC.HMC.Edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org (using the ti and and also the bge drivers).... with 4.5-PRERELEASE (cvs'upped two days ago), I've now lost the ability to see the VLAN traffic on the main interface (even with no VLAN in the kernel!)...so once again, I've lost that loving feeling ;-( Is there anything I can do in stable that will allow me to see the packets (incoming)? If not, what magic will I have to perform in current that will do this? (Of course, if Luigi would add some simple link layer counting or diverting capability to ipfw, that would be ideal ;-) Thanks in advance.... On Fri, 16 Nov 2001, Brooks Davis wrote: > On Fri, Nov 16, 2001 at 06:27:25AM -0800, CJTT wrote: > > (I'll temporarily remove the VLAN support from the kernel). > > But when this is MFC'd, what will I need to do in order to > > continue seeing all traffic on the main interface > > (while using libpcap (tcpdump))? > > > > Will the VLAN_INPUT_TAG macro just handle it automatically? > > I'll take a look at adding the appropriate code to VLAN_INPUT_TAG, but > I can't promise that I will get it done before the MFC. > > -- Brooks > > -- > Any statement of the form "X is the one, true Y" is FALSE. > PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 8: 9:52 2002 Delivered-To: freebsd-net@freebsd.org Received: from r4k.net (r4k.net [194.109.74.241]) by hub.freebsd.org (Postfix) with ESMTP id 4918F37B402 for ; Fri, 11 Jan 2002 08:09:47 -0800 (PST) Received: (from alexlh@localhost) by r4k.net (8.11.3/8.11.1) id g0BGAi677911; Fri, 11 Jan 2002 17:10:44 +0100 (CET) (envelope-from alexlh) Date: Fri, 11 Jan 2002 17:10:44 +0100 From: Alex Le Heux To: Bill Fumerola Cc: freebsd-net@FreeBSD.ORG Subject: Re: Juniper IOS install woes on FreeBSD machine Message-ID: <20020111161043.GF75815@funk.org> References: <4AE1AC3D692F55488F2D03518907B8AD1D3BDF@beebe001.NOE.Nokia.com> <20020109010300.D4417@elvis.mu.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020109010300.D4417@elvis.mu.org> User-Agent: Mutt/1.3.25i Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Wed, Jan 09, 2002 at 01:03:00AM -0600, Bill Fumerola wrote: > On Wed, Jan 09, 2002 at 07:17:16AM +0200, chunan.li@nokia.com wrote: > > Hello > > > > Could you please tell me where I can download the JunOS? > > I am planing to use it in my protocol testing network. > > you successfully missed the entire point of louie's well written mail. > > i'll summarize in my own special way: > > JUNOS IS PROPRIETARY SOFTWARE THAT SHIPS WITH JUNIPER ROUTERS AND JUST > BECAUSE YOU CAN PHYSICALLY EXTRACT IT FROM THE ROUTER AND PLACE IT ON A > PC DOES NOT GIVE YOU THE RIGHT TO DO THAT. Actually, it does. As long as you make sure you shut down your Juniper router before you boot up JunOS on your PC. > just another happy juniper customer, Ah, yes, I remember how it feels to be a happy Juniper customer... Alex Le Heux -- Technology, of course, has been part of human existence since our Cro-Magnon ancestors picked up a stone and realized it could be more than part of the landscape. - Declan McCullagh To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 8:59:59 2002 Delivered-To: freebsd-net@freebsd.org Received: from johnson.mail.mindspring.net (johnson.mail.mindspring.net [207.69.200.177]) by hub.freebsd.org (Postfix) with ESMTP id 45B6D37B404 for ; Fri, 11 Jan 2002 08:59:57 -0800 (PST) Received: from user-uiver5a.dsl.mindspring.com ([165.247.108.170] helo=compaq) by johnson.mail.mindspring.net with smtp (Exim 3.33 #1) id 16P523-0007ls-00; Fri, 11 Jan 2002 11:59:56 -0500 Message-ID: <000001c19a5c$8c082fa0$aa6cf7a5@compaq> From: "Naga R Narayanaswamy" To: "Kshitij Gunjikar" , References: Subject: Re: IP input Options processing Date: Thu, 10 Jan 2002 10:35:06 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org The destination IP address gets modified on every hop on the source routed IP packets unlike non-source routed packets. At the source, the ip_dst is one of the ip interfaces on the next hop. Note that on loose source routing, the option source route itself will be modified. ----- Original Message ----- From: "Kshitij Gunjikar" To: Sent: Thursday, January 10, 2002 7:58 AM Subject: IP input Options processing > Hi All, > I have a question in the IP input code. If we are able to find the next > for a source routed packet why do we change the destination address of the > packet. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 9: 6: 5 2002 Delivered-To: freebsd-net@freebsd.org Received: from mail.orange-carb.org (ottawa-hs-64-26-169-169.s-ip.magma.ca [64.26.169.169]) by hub.freebsd.org (Postfix) with SMTP id B354637B404 for ; Fri, 11 Jan 2002 09:05:55 -0800 (PST) Received: (qmail 23145 invoked by uid 1009); 11 Jan 2002 17:05:54 -0000 Message-ID: <20020111170554.23144.qmail@mail.orange-carb.org> From: freebsd-questions@juicer.orange-carb.org (Colin Henein) Subject: pppoe problem (not tcpmssfixup) To: freebsd-net@freebsd.org Date: Fri, 11 Jan 2002 12:05:54 -0500 (EST) X-Mailer: ELM [version 2.5 PL3] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Greetings freebsd-net types. I am having a serious problem with pppoe networking on my 4.4-release system. I realise that this isn't a list devoted to answering user questions, but I have tried freebsd-questions, and I think this issue is a bit too technical for that forum. I hope you understand that I've tried to solve this problem myself for months, and I've thoroughly researched related problems (i.e. black hole routers) on the net. I've tried to find relevant answers in the archives of this list, and I've tried to contact others on the net to no avail. I should mention up front that I've been using FreeBSD for many years now, and have a solid understanding of IP and related protocols, including reasons for and mechanisms used in IP packet fragmentation. If things get too hairy I can get my copy of Comer out. So if you think you can help, don't hold back the technical details on my account... I hope you'll indulge this question, as you're really my last resort. I am on ADSL service (magma.ca), and the FreeBSD box is connected directly to my Nortel 1meg modem. I have an "inside" network as well, which pretty much only sends and receives web traffic. I have no ports that open through onto the inside network, so all incoming connection requests terminate on the FreeBSD box itself. I have the classic ADSL problem of not being able to get replies back from certain websites (whether telnetting to port 80 from the FreeBSD box, or using IE on my powerbook on the inside network). This I can deal with through proxies. The really critical problem, though, is that I also am running an SMTP server (qmail) and have trouble receiving emails from certain sites. If I remove the FreeBSD box from the loop and plug my powerbook straight into the 1meg modem then I can hit all the websites that are problemmatic with FreeBSD. This makes me suspect either my configuration of FreeBSD (more likely) or the OS itself (less likely). I understand the black hole router problem, but an upgrade to release-4.4 with the default tcpmssfixup option on ppp doesn't solve the problem. (My ppp.conf file is appended to the end of this message.) The www problem I can get around with proxies, but the SMTP problems are more serious. I am dropping emails from a few hosts on the floor, and a few specific mailing list subscribers are having serious problems. What happens is that inbound SMTP connections hang after my FreeBSD box sends the 'go ahead to send data' response. Here is a captured dialog between my mail server (mail.orange-carb.org) and one of the problematic senders (tomts9-srv.bellnexxia.net): > 220 mail.orange-carb.org ESMTP^M < EHLO tomts9-srv.bellnexxia.net^M > 250-mail.orange-carb.org^M > 250-PIPELINING^M > 250 8BITMIME^M < MAIL FROM:^M > 250 ok^M < RCPT TO:^M > 250 ok^M < DATA^M > 354 go ahead^M > 451 timeout (#4.4.2)^M > [EOF] To me this sounds very similar to the black hole router problem, in that the connection just sort of times out when bulk of the data is coming. As those familiar with Canadian networks might expect, my attempts to contact anyone technical at bellnexxia's NOC, or sympatico's IS people have been met with resounding silence. I desparately need a solution to this that I can implement myself. Even my own ISP will be hard to convince since they explicitly will not support anything that isn't Mac/Windows/Linux. I'm hoping that someone in this forum will be able to shed some light on this situation, offer some suggestions for how I can diagnose this problem more completely, and perhaps even tell me how I can fix things. Thanks for considering this issue. Colin --------- ppp.conf ----------- |magma: | set redial 30.120 0 | set reconnect 120 9999999 | set device PPPoE:ed1 | set MRU 1492 | set MTU 1492 | set authname ######### | set authkey ######### | set log Phase | set dial | set login | set ifaddr 64.26.169.169 10.0.0.2/0 255.255.255.255 | set timeout 0 | set cd 5 | enable lqr | set lqrperiod 10 | set crtscts off -------------------------------- -- || when we're little kids maybe we need stories Colin Henein || to help us go to sleep. but sooner or later we || need stories to help us wake up... -- Utah Phillips To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 10:38:36 2002 Delivered-To: freebsd-net@freebsd.org Received: from freesbee.wheel.dk (freesbee.wheel.dk [193.162.159.97]) by hub.freebsd.org (Postfix) with ESMTP id 2685937B402 for ; Fri, 11 Jan 2002 10:38:31 -0800 (PST) Received: by freesbee.wheel.dk (Postfix, from userid 1001) id A61BC5DB8; Fri, 11 Jan 2002 19:38:29 +0100 (CET) Date: Fri, 11 Jan 2002 19:38:29 +0100 From: Jesper Skriver To: Samuel Chow Cc: "'freebsd-net@freebsd.org'" Subject: Re: Please commit kern/31954 patch Message-ID: <20020111193829.B18612@FreeBSD.org> References: <3324A9F618DDD511B8210002A52CDE38130137@zcaly0jd.ca.nortel.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3324A9F618DDD511B8210002A52CDE38130137@zcaly0jd.ca.nortel.com>; from samchow@nortelnetworks.com on Fri, Jan 04, 2002 at 11:33:58AM -0500 X-PGP-Fingerprint: 6B88 9CE8 66E9 E631 C9C5 5EB4 22AB F0EC F956 1C31 X-PGP-Public-Key: http://freesbee.wheel.dk/~jesper/gpgkey.pub Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, Jan 04, 2002 at 11:33:58AM -0500, Samuel Chow wrote: > Hi there, > > Can someone please commit kern/31954? I've > just been bitten by it on a recently cvsup'ed > -stable. > > For reference, the problem is the xl card not > seeing its own broadcast packet. It has been committed to -current, it will be in 4.5-RELEASE if the release engineers allow it. /Jesper -- Jesper Skriver, jesper(at)skriver(dot)dk - CCIE #5456 Work: Network manager @ AS3292 (Tele Danmark DataNetworks) Private: FreeBSD committer @ AS2109 (A much smaller network ;-) One Unix to rule them all, One Resolver to find them, One IP to bring them all and in the zone to bind them. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 11:20:39 2002 Delivered-To: freebsd-net@freebsd.org Received: from rwcrmhc52.attbi.com (rwcrmhc52.attbi.com [216.148.227.88]) by hub.freebsd.org (Postfix) with ESMTP id 693E037B41C for ; Fri, 11 Jan 2002 11:20:08 -0800 (PST) Received: from InterJet.elischer.org ([12.232.206.8]) by rwcrmhc52.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020111192007.JCYG3578.rwcrmhc52.attbi.com@InterJet.elischer.org>; Fri, 11 Jan 2002 19:20:07 +0000 Received: from localhost (localhost.elischer.org [127.0.0.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id LAA63698; Fri, 11 Jan 2002 11:03:51 -0800 (PST) Date: Fri, 11 Jan 2002 11:03:49 -0800 (PST) From: Julian Elischer To: Colin Henein Cc: freebsd-net@freebsd.org Subject: Re: pppoe problem (not tcpmssfixup) In-Reply-To: <20020111170554.23144.qmail@mail.orange-carb.org> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hard to say, but it does sound like a fragmentation/oversize problem. try setting the mtu and mru down more and I don't see proof that the mssfixup is turned on..... how about you try connect to a site that fails while looking at what is on the pppoe line with tcpdump (use -i fxp0 or whatever) it can interpret pppoe and the ppp within it. maybe it can also do the tcp within that too. if so you may see what is actually being sent out which may be of use. On Fri, 11 Jan 2002, Colin Henein wrote: > Greetings freebsd-net types. > > I am having a serious problem with pppoe networking on my 4.4-release > system. I realise that this isn't a list devoted to answering user > questions, but I have tried freebsd-questions, and I think this issue > is a bit too technical for that forum. > > I hope you understand that I've tried to solve this problem myself for > months, and I've thoroughly researched related problems (i.e. black > hole routers) on the net. I've tried to find relevant answers in the > archives of this list, and I've tried to contact others on the net to > no avail. > > I should mention up front that I've been using FreeBSD for many years > now, and have a solid understanding of IP and related protocols, > including reasons for and mechanisms used in IP packet > fragmentation. If things get too hairy I can get my copy of Comer > out. So if you think you can help, don't hold back the technical > details on my account... > > I hope you'll indulge this question, as you're really my last resort. > > I am on ADSL service (magma.ca), and the FreeBSD box is connected > directly to my Nortel 1meg modem. I have an "inside" network as well, > which pretty much only sends and receives web traffic. I have no ports > that open through onto the inside network, so all incoming connection > requests terminate on the FreeBSD box itself. > > I have the classic ADSL problem of not being able to get replies back > from certain websites (whether telnetting to port 80 from the FreeBSD > box, or using IE on my powerbook on the inside network). This I can > deal with through proxies. > > The really critical problem, though, is that I also am running an SMTP > server (qmail) and have trouble receiving emails from certain sites. > > If I remove the FreeBSD box from the loop and plug my powerbook > straight into the 1meg modem then I can hit all the websites that are > problemmatic with FreeBSD. This makes me suspect either my > configuration of FreeBSD (more likely) or the OS itself (less likely). > > I understand the black hole router problem, but an upgrade to > release-4.4 with the default tcpmssfixup option on ppp doesn't solve > the problem. (My ppp.conf file is appended to the end of this > message.) > > The www problem I can get around with proxies, but the SMTP problems > are more serious. I am dropping emails from a few hosts on the floor, > and a few specific mailing list subscribers are having serious > problems. What happens is that inbound SMTP connections hang after my > FreeBSD box sends the 'go ahead to send data' response. Here is a > captured dialog between my mail server (mail.orange-carb.org) and one > of the problematic senders (tomts9-srv.bellnexxia.net): > > 220 mail.orange-carb.org ESMTP^M > < EHLO tomts9-srv.bellnexxia.net^M > > 250-mail.orange-carb.org^M > > 250-PIPELINING^M > > 250 8BITMIME^M > < MAIL FROM:^M > > 250 ok^M > < RCPT TO:^M > > 250 ok^M > < DATA^M > > 354 go ahead^M > > 451 timeout (#4.4.2)^M > > [EOF] > To me this sounds very similar to the black hole router problem, in > that the connection just sort of times out when bulk of the data is > coming. > > As those familiar with Canadian networks might expect, my attempts to > contact anyone technical at bellnexxia's NOC, or sympatico's IS people > have been met with resounding silence. > > I desparately need a solution to this that I can implement > myself. Even my own ISP will be hard to convince since they explicitly > will not support anything that isn't Mac/Windows/Linux. > > I'm hoping that someone in this forum will be able to shed some light > on this situation, offer some suggestions for how I can diagnose this > problem more completely, and perhaps even tell me how I can fix > things. > > Thanks for considering this issue. > Colin > > > --------- ppp.conf ----------- > |magma: > | set redial 30.120 0 > | set reconnect 120 9999999 > | set device PPPoE:ed1 > | set MRU 1492 > | set MTU 1492 > | set authname ######### > | set authkey ######### > | set log Phase > | set dial > | set login > | set ifaddr 64.26.169.169 10.0.0.2/0 255.255.255.255 > | set timeout 0 > | set cd 5 > | enable lqr > | set lqrperiod 10 > | set crtscts off > -------------------------------- > > > > > -- > || when we're little kids maybe we need stories > Colin Henein || to help us go to sleep. but sooner or later we > || need stories to help us wake up... -- Utah Phillips > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 11:37:27 2002 Delivered-To: freebsd-net@freebsd.org Received: from mail.wrs.com (unknown-1-11.windriver.com [147.11.1.11]) by hub.freebsd.org (Postfix) with ESMTP id A76FD37B404 for ; Fri, 11 Jan 2002 11:37:17 -0800 (PST) Received: from ala-tombila.wrs.com (tombila [147.11.38.16]) by mail.wrs.com (8.9.3/8.9.1) with ESMTP id LAA13967 for ; Fri, 11 Jan 2002 11:36:06 -0800 (PST) Message-Id: <5.1.0.14.2.20020111113634.02dcaa60@wrs.com> X-Sender: anandn@wrs.com X-Mailer: QUALCOMM Windows Eudora Version 5.1 Date: Fri, 11 Jan 2002 11:39:21 -0800 To: freebsd-net@freebsd.org From: Anand Narayanan Subject: Issue regarding SO_REUSEPORT and SO_REUSEADDR Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, I am resending this on the mailing list. This is an issue from in_pcb.c v 1.59.2.5 2000/08/16 06:14:23 I just encountered a problem in trying to bind a server address using the SO_REUSEPORT and SO_REUSEADDR option after the first one has been shutdown. Looking into in_pcbbind, I see that if SO_REUSEADDR or SO_REUSEPORT is set, then the variable "wild" is 0. if ((so->so_options & (SO_REUSEADDR|SO_REUSEPORT)) == 0) wild = 1; However, when calling in_pcblookup_local (in the non-multicast case), it seems to ignore the value of wild. if (lport) { ... ... if (so->so_cred->cr_uid != 0 && !IN_MULTICAST(ntohl(sin->sin_addr.s_addr))) { t = in_pcblookup_local(inp->inp_pcbinfo, sin->sin_addr, lport, prison ? 0 : INPLOOKUP_WILDCARD); Shouldn't the last argument to in_pcblookup_local be "wild" instead of INPLOOKUP_WILDCARD? By passing INPLOOKUP_WILDCARD, in_pcblookup_local always ignores the SO_REUSE* options and bind fails. Is this a bug or am I missing something? Any help would be appreciated. -Anand ******************************** Anand Narayanan Wind River Systems. http://www.windriver.com ******************************** To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 11:41:22 2002 Delivered-To: freebsd-net@freebsd.org Received: from willers.employees.org (willers.employees.org [128.107.241.167]) by hub.freebsd.org (Postfix) with ESMTP id D655C37B404 for ; Fri, 11 Jan 2002 11:41:18 -0800 (PST) Received: from localhost (cjtt@localhost) by willers.employees.org (8.12.1/8.12.1) with SMTP id g0BJfIvt008553 for ; Fri, 11 Jan 2002 11:41:18 -0800 (PST) Date: Fri, 11 Jan 2002 11:41:18 -0800 (PST) From: CJTT To: freebsd-net@FreeBSD.ORG Subject: netgraph and VLANs (was Re: ti driver, vlan and tcpdump In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Is there a way to see entire VLAN packets with netgraph even if the driver has stripped off the VLAN info? (examples or pointers would be appreciated)... Thanks On Fri, 11 Jan 2002, CJTT wrote: > > (using the ti and and also the bge drivers).... > with 4.5-PRERELEASE (cvs'upped two days ago), I've now lost > the ability to see the VLAN traffic on the main interface > (even with no VLAN in the kernel!)...so once again, > I've lost that loving feeling ;-( > > Is there anything I can do in stable that will allow > me to see the packets (incoming)? If not, what magic > will I have to perform in current that will do this? > > (Of course, if Luigi would add some simple link layer > counting or diverting capability to ipfw, that would > be ideal ;-) > > Thanks in advance.... > > > On Fri, 16 Nov 2001, Brooks Davis wrote: > > > On Fri, Nov 16, 2001 at 06:27:25AM -0800, CJTT wrote: > > > (I'll temporarily remove the VLAN support from the kernel). > > > But when this is MFC'd, what will I need to do in order to > > > continue seeing all traffic on the main interface > > > (while using libpcap (tcpdump))? > > > > > > Will the VLAN_INPUT_TAG macro just handle it automatically? > > > > I'll take a look at adding the appropriate code to VLAN_INPUT_TAG, but > > I can't promise that I will get it done before the MFC. > > > > -- Brooks To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 11:47:46 2002 Delivered-To: freebsd-net@freebsd.org Received: from odin.ac.hmc.edu (Odin.AC.HMC.Edu [134.173.32.75]) by hub.freebsd.org (Postfix) with ESMTP id 30C9537B405 for ; Fri, 11 Jan 2002 11:47:27 -0800 (PST) Received: (from brdavis@localhost) by odin.ac.hmc.edu (8.11.0/8.11.0) id g0BJlQg26099; Fri, 11 Jan 2002 11:47:26 -0800 Date: Fri, 11 Jan 2002 11:47:26 -0800 From: Brooks Davis To: CJTT Cc: freebsd-net@FreeBSD.ORG Subject: Re: ti driver, vlan and tcpdump Message-ID: <20020111114726.B18998@Odin.AC.HMC.Edu> References: <20011116090635.A31992@Odin.AC.HMC.Edu> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="/NkBOFFp2J2Af1nK" Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: ; from cjtt@employees.org on Fri, Jan 11, 2002 at 07:53:08AM -0800 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --/NkBOFFp2J2Af1nK Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Fri, Jan 11, 2002 at 07:53:08AM -0800, CJTT wrote: >=20 > (using the ti and and also the bge drivers).... > with 4.5-PRERELEASE (cvs'upped two days ago), I've now lost > the ability to see the VLAN traffic on the main interface > (even with no VLAN in the kernel!)...so once again, > I've lost that loving feeling ;-( >=20 > Is there anything I can do in stable that will allow > me to see the packets (incoming)? If not, what magic=20 > will I have to perform in current that will do this? >=20 > (Of course, if Luigi would add some simple link layer > counting or diverting capability to ipfw, that would > be ideal ;-) >=20 > Thanks in advance.... This patch or something like it should work. -- Brooks Index: if_vlan.c =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D RCS file: /usr/cvs/src/sys/net/if_vlan.c,v retrieving revision 1.36 diff -u -r1.36 if_vlan.c --- if_vlan.c 21 Nov 2001 20:29:08 -0000 1.36 +++ if_vlan.c 19 Dec 2001 01:42:10 -0000 @@ -401,6 +401,26 @@ { struct ifvlan *ifv; =20 + /* + * Fake up a header and send the packet to the physical interface's + * bpf tap if active. + */ + if (m->m_pkthdr.rcvif->if_bpf !=3D NULL) { + struct m_hdr mh; + struct ether_vlan_header evh; + + bcopy(eh, &evh, 2*ETHER_ADDR_LEN); + evh.evl_encap_proto =3D htons(ETHERTYPE_VLAN); + evh.evl_tag =3D htons(t); + evh.evl_proto =3D eh->ether_type; + + /* This kludge is OK; BPF treats the "mbuf" as read-only */ + mh.mh_next =3D m; + mh.mh_data =3D (char *)&evh; + mh.mh_len =3D ETHER_HDR_LEN + EVL_ENCAPLEN; + bpf_mtap(m->m_pkthdr.rcvif, (struct mbuf *)&mh); + } + for (ifv =3D LIST_FIRST(&ifv_list); ifv !=3D NULL; ifv =3D LIST_NEXT(ifv, ifv_list)) { if (m->m_pkthdr.rcvif =3D=3D ifv->ifv_p --=20 Any statement of the form "X is the one, true Y" is FALSE. PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 --/NkBOFFp2J2Af1nK Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8P0FNXY6L6fI4GtQRAsofAKDiLIdBH/bO91PHD62W0Hfx9Z6VLQCfVFca tZKPeoaQZ80EJVDbnJ7OKzw= =97fd -----END PGP SIGNATURE----- --/NkBOFFp2J2Af1nK-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 14:31:37 2002 Delivered-To: freebsd-net@freebsd.org Received: from mail.orange-carb.org (ottawa-hs-64-26-169-169.s-ip.magma.ca [64.26.169.169]) by hub.freebsd.org (Postfix) with SMTP id 9003537B482 for ; Fri, 11 Jan 2002 14:31:19 -0800 (PST) Received: (qmail 1191 invoked by uid 1009); 11 Jan 2002 22:31:16 -0000 Message-ID: <20020111223116.1190.qmail@mail.orange-carb.org> From: freebsd-questions@juicer.orange-carb.org (Colin Henein) Subject: Solution: pppoe hangs, not tcpmssfix To: drwilco@drwilco.net, julian@elischer.org, jfleming@anet.com, freebsd-net@freebsd.org Date: Fri, 11 Jan 2002 17:31:16 -0500 (EST) Cc: freebsd-questions@freebsd.org X-Mailer: ELM [version 2.5 PL3] MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Greetings all. Just a short note to thank you all for your replies. In the end Doc's suggestion of lowering the MTU past 1492 (the negotiated setting between my host and my upstream pppoe endpoint) worked like a charm. Setting it down to 1200 did the trick... but only once I carefully read the man page for 'ppp' and realised I had to: set max mtu 1200 set max mru 1200 Without the 'max' ifconfig reported 1492 mtu, as the upstream pppoe host negotiated up the setting. Immediately after doing this a flood of hung SMTP connections came in, and my outbound HTTP connections started working. This has been bugging me for a year. I don't know why 1492 wasn't an appropriate MTU, I can only assume that some link upstream of me is less than that but bigger than 1200, and they aren't doing the equivalent of tcpmssfixup on their equipment. Thanks again for all your suggestions... Colin ps. I'm cc-ing this to freebsd-questions in case people over there are still scratching their heads on this one. -- || when we're little kids maybe we need stories Colin Henein || to help us go to sleep. but sooner or later we || need stories to help us wake up... -- Utah Phillips To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 16:47:56 2002 Delivered-To: freebsd-net@freebsd.org Received: from ns.chatpr.org (ns.chatpr.org [200.50.26.254]) by hub.freebsd.org (Postfix) with SMTP id 4062A37B419 for ; Fri, 11 Jan 2002 16:47:51 -0800 (PST) Received: (qmail 98956 invoked by uid 1000); 12 Jan 2002 00:49:35 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 12 Jan 2002 00:49:35 -0000 Date: Fri, 11 Jan 2002 20:49:35 -0400 (AST) From: Abel Alejandro To: freebsd-net@freebsd.org Cc: elec@chatpr.org Subject: Problems with inet_ntop Message-ID: <20020111204406.N98793-100000@www.chatpr.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hello, a while ago I come with a kqueue example for FreeBSD. The source is at: http://www.monkeys.com/freeware/kqueue-echo.c The problem is after getting used to the code, i wanted to know the IP of the incoming connections, so I used inet_ntop for this. My problem is that on the very first connection kqueue-echo receives, inet_ntop prints a bad address, however after this first connection it starts printing the ip address correctly. The source for the tweaked kqueue-echo.c is at: http://core.friendspr.com/~elec/kqueue-echo.c Thank you, please CC to me since i am not subscribed. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 16:55:41 2002 Delivered-To: freebsd-net@freebsd.org Received: from elvis.mu.org (elvis.mu.org [192.203.228.196]) by hub.freebsd.org (Postfix) with ESMTP id 6410B37B405 for ; Fri, 11 Jan 2002 16:55:35 -0800 (PST) Received: by elvis.mu.org (Postfix, from userid 1192) id 4496110DDF8; Fri, 11 Jan 2002 16:55:35 -0800 (PST) Date: Fri, 11 Jan 2002 16:55:35 -0800 From: Alfred Perlstein To: Abel Alejandro Cc: freebsd-net@freebsd.org, elec@chatpr.org Subject: Re: Problems with inet_ntop Message-ID: <20020111165535.U7984@elvis.mu.org> References: <20020111204406.N98793-100000@www.chatpr.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020111204406.N98793-100000@www.chatpr.org>; from elec@www.chatpr.org on Fri, Jan 11, 2002 at 08:49:35PM -0400 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Abel Alejandro [020111 16:49] wrote: > Hello, a while ago I come with a kqueue example for FreeBSD. > The source is at: http://www.monkeys.com/freeware/kqueue-echo.c > > The problem is after getting used to the code, i wanted to know the IP of > the incoming connections, so I used inet_ntop for this. > > My problem is that on the very first connection kqueue-echo receives, > inet_ntop prints a bad address, however after this first connection it > starts printing the ip address correctly. > > The source for the tweaked kqueue-echo.c is at: > http://core.friendspr.com/~elec/kqueue-echo.c static void do_accept (register struct kevent const *const kep) { auto sockaddr_in sin; auto socklen_t sinsiz; register int s; register ecb *ecbp; char ok[200]; if ((s = accept (kep->ident, (struct sockaddr *)&sin, &sinsiz)) == -1) fatal ("Error in accept(): %s", strerror (errno)); OOPS! You're missing: sinsiz = sizeof(sin); before the call to accept. -- -Alfred Perlstein [alfred@freebsd.org] 'Instead of asking why a piece of software is using "1970s technology," start asking why software is ignoring 30 years of accumulated wisdom.' Tax deductable donations for FreeBSD: http://www.freebsdfoundation.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Fri Jan 11 17: 6: 1 2002 Delivered-To: freebsd-net@freebsd.org Received: from ns.chatpr.org (ns.chatpr.org [200.50.26.254]) by hub.freebsd.org (Postfix) with SMTP id 4CD1137B404 for ; Fri, 11 Jan 2002 17:05:57 -0800 (PST) Received: (qmail 99529 invoked by uid 1000); 12 Jan 2002 01:07:46 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 12 Jan 2002 01:07:46 -0000 Date: Fri, 11 Jan 2002 21:07:46 -0400 (AST) From: Abel Alejandro To: freebsd-net@freebsd.org Subject: Re: Problems with inet_ntop Message-ID: <20020111210637.H99497-100000@www.chatpr.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Oops in my part, thank you, a lot :) Also that was amazing fast. *worked*. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Jan 12 3:50: 7 2002 Delivered-To: freebsd-net@freebsd.org Received: from smtp018.mail.yahoo.com (smtp018.mail.yahoo.com [216.136.174.115]) by hub.freebsd.org (Postfix) with SMTP id E582637B416 for ; Sat, 12 Jan 2002 03:50:04 -0800 (PST) Received: from unknown (HELO kshitij1) (203.124.128.243) by smtp.mail.vip.sc5.yahoo.com with SMTP; 12 Jan 2002 11:50:03 -0000 From: "Kshitij Gunjikar" To: Subject: Performance of in_cksum.c Date: Sat, 12 Jan 2002 17:29:19 +0530 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi , I have a question on the in_cksum.c file. Is it optimized to a particular architecture ? If yes which architecture and what is the performance accepted? Regards kshitij _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Jan 12 6:52:12 2002 Delivered-To: freebsd-net@freebsd.org Received: from korak.sk (korak.sk [195.72.9.135]) by hub.freebsd.org (Postfix) with ESMTP id 3179537B402; Sat, 12 Jan 2002 06:52:06 -0800 (PST) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by korak.sk (Postfix) with SMTP id 9679253E9E; Sat, 12 Jan 2002 15:51:59 +0100 (CET) Received: by korak.sk (Postfix, from userid 501) id 66C1353FC8; Sat, 12 Jan 2002 15:51:48 +0100 (CET) Date: Sat, 12 Jan 2002 15:51:48 +0100 From: Jan Oravec To: ru@FreeBSD.org, net@FreeBSD.org, freebsd-gnats-submit@FreeBSD.org Subject: Re: kern/33747: bug in rt socket Message-ID: <20020112155148.A30990@korak.sk> Reply-To: Jan Oravec Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.3.21i X-Operating-System: UNIX Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org > > there is a bug in rt socket in kernel, file net/rtsock.c: > > > > function rt_ifmsg contains: > > ifm->ifm_addrs = 0; > > > > we should set RTA_IFP attribute instead and send interface name, > > because information that some interface has been created without > > name of interface is unusable. > > > I wouldn't call it a bug, but rather a design issue. In > BSD, rt_ifmsg() doesn't set any sockaddrs, and this is > documented in Stevens' TCP/IP Illustrated Vol. 2 on the > bottom of page 627. What made you think we SHOULD supply > IFP to this message? Usually, daemons remember interface > index (see natd(8) for a working example), and on receipt > of an RTM_IFINFO message with a matching ifm_index, some > actions take place. Yes, but we may create interfaces while daemon runs. The typical example is 'gif' interface. When daemon starts, gif0 does not exist. After start of daemon, we create interface with 'ifconfig gif0 create'. Since interface did not exist, daemon doesn't know about his name and ID and when daemon receive RTM_IFINFO message, daemon knows only that interface has been created, but doesn't know his name. > I've looked into the latest revisions of rtsock.c in > OpenBSD, NetBSD and BSD/OS; they all do not seem to > set any sockaddrs in "info" before calling rt_msg1(), > and all set ifm_addrs = 0. Are you sure you're not > looking at some locally modified OpenBSD sources? oops, my fault. i didn't see problem on OpenBSD because gif interfaces are statically created on boot time. > The fix is rather trivial but I don't think we should > commit it, for the reasons specified above. ifm->ifm_addrs should be set to info.rti_addrs only in case interface is created (not on up/down events) Regards, -- Jan Oravec XS26 - 'Access to IPv6' jan.oravec@xs26.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Jan 12 10:46:57 2002 Delivered-To: freebsd-net@freebsd.org Received: from boreas.isi.edu (boreas.isi.edu [128.9.160.161]) by hub.freebsd.org (Postfix) with ESMTP id 4B86337B402; Sat, 12 Jan 2002 10:46:37 -0800 (PST) Received: from keg (ras34.isi.edu [128.9.176.134]) by boreas.isi.edu (8.11.6/8.11.2) with ESMTP id g0CIkON05298; Sat, 12 Jan 2002 10:46:24 -0800 (PST) Reply-To: From: "Lars Eggert" To: "'Jan Oravec'" , , , Subject: RE: kern/33747: bug in rt socket Date: Sat, 12 Jan 2002 10:46:18 -0800 Organization: USC Information Sciences Institute Message-ID: <001c01c19b99$6c52c5b0$8f7ba8c0@keg> MIME-Version: 1.0 X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.3416 Content-Type: multipart/signed; boundary="----=_NextPart_000_0017_01C19B56.5D7FBDB0"; protocol="application/x-pkcs7-signature"; micalg=SHA1 In-Reply-To: <20020112155148.A30990@korak.sk> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0017_01C19B56.5D7FBDB0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit > Yes, but we may create interfaces while daemon runs. The > typical example is 'gif' interface. When daemon starts, gif0 > does not exist. After start of daemon, we create interface > with 'ifconfig gif0 create'. Since interface did not exist, > daemon doesn't know about his name and ID and when daemon > receive RTM_IFINFO message, daemon knows only that interface > has been created, but doesn't know his name. I have not followed all of this exchange, but let me chime in and mention that http://www.freebsd.org/cgi/query-pr.cgi?pr=misc/24391 could be related. The problem there is dissappearing interfaces (pccard ejections) messing up amd. Lars -- Lars Eggert Information Sciences Institute http://www.isi.edu/larse/ University of Southern California ------=_NextPart_000_0017_01C19B56.5D7FBDB0 Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIJFzCCArUw ggIeoAMCAQICAwWBRzANBgkqhkiG9w0BAQIFADCBkjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdl c3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsT FENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAw MC44LjMwMB4XDTAxMDgyNDE2NDAwMFoXDTAyMDgyNDE2NDAwMFowVDEPMA0GA1UEBBMGRWdnZXJ0 MQ0wCwYDVQQqEwRMYXJzMRQwEgYDVQQDEwtMYXJzIEVnZ2VydDEcMBoGCSqGSIb3DQEJARYNbGFy c2VAaXNpLmVkdTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0AvLBsD78nxcUHeHkaMgl3b4 qYPnfgbf8Lh+HQP8RgGMRG/Yb+vTpkGezlwt9pkJxiD11uZDy4CNNJUu3gKxKSb+zRV70O+lkwwf tuHoLHoH4xwo3LcQ2LGDpd+I95tUN4dfJ3TmeEcUSF50dC/SuUI4w8AlhXQ8IxrhgdayTpECAwEA AaNWMFQwKgYFK2UBBAEEITAfAgEAMBowGAIBBAQTTDJ1TXlmZkJOVWJOSkpjZFoyczAYBgNVHREE ETAPgQ1sYXJzZUBpc2kuZWR1MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQECBQADgYEAheZhn0pQ A8zI7U2K1ZIAl11j0a1DKxnp3GtTvOUrGRB3WvYxidvdZ1kizhEsWeXU81TkNDH0DaRqtOEeu6Q2 OhB+jeKEqY7IDAJE4/fI0e+d6PnG1hd+vEvYmsKHkmzBhPc94XUOKNWO+qVNP2NGyNI3QIDy5wX4 fdcOo1S34r4wggMpMIICkqADAgECAgEMMA0GCSqGSIb3DQEBBAUAMIHRMQswCQYDVQQGEwJaQTEV MBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24xGjAYBgNVBAoTEVRoYXd0 ZSBDb25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZpY2F0aW9uIFNlcnZpY2VzIERpdmlzaW9uMSQw IgYDVQQDExtUaGF3dGUgUGVyc29uYWwgRnJlZW1haWwgQ0ExKzApBgkqhkiG9w0BCQEWHHBlcnNv bmFsLWZyZWVtYWlsQHRoYXd0ZS5jb20wHhcNMDAwODMwMDAwMDAwWhcNMDIwODI5MjM1OTU5WjCB kjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3du MQ8wDQYDVQQKEwZUaGF3dGUxHTAbBgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQD Ex9QZXJzb25hbCBGcmVlbWFpbCBSU0EgMjAwMC44LjMwMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCB iQKBgQDeMzKmY8cJJUU+0m54J2eBxdqIGYKXDuNEKYpjNSptcDz63K737nRvMLwzkH/5NHGgo22Y 8cNPomXbDfpL8dbdYaX5hc1VmjUanZJ1qCeu2HL5ugL217CR3hzpq+AYA6h8Q0JQUYeDPPA5tJtU ihOH/7ObnUlmAC0JieyUa+mhaQIDAQABo04wTDApBgNVHREEIjAgpB4wHDEaMBgGA1UEAxMRUHJp dmF0ZUxhYmVsMS0yOTcwEgYDVR0TAQH/BAgwBgEB/wIBADALBgNVHQ8EBAMCAQYwDQYJKoZIhvcN AQEEBQADgYEAcxtvJmWL/xU0S1liiu1EvknH6A27j7kNaiYqYoQfuIdjdBxtt88aU5FL4c3mONnt UPQ6bDSSrOaSnG7BIwHCCafvS65y3QZn9VBvLli4tgvBUFe17BzX7xe21Yibt6KIGu05Wzl9NPy2 lhglTWr0ncXDkS+plrgFPFL83eliA0gwggMtMIIClqADAgECAgEAMA0GCSqGSIb3DQEBBAUAMIHR MQswCQYDVQQGEwJaQTEVMBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYXBlIFRvd24x GjAYBgNVBAoTEVRoYXd0ZSBDb25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZpY2F0aW9uIFNlcnZp Y2VzIERpdmlzaW9uMSQwIgYDVQQDExtUaGF3dGUgUGVyc29uYWwgRnJlZW1haWwgQ0ExKzApBgkq hkiG9w0BCQEWHHBlcnNvbmFsLWZyZWVtYWlsQHRoYXd0ZS5jb20wHhcNOTYwMTAxMDAwMDAwWhcN MjAxMjMxMjM1OTU5WjCB0TELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAG A1UEBxMJQ2FwZSBUb3duMRowGAYDVQQKExFUaGF3dGUgQ29uc3VsdGluZzEoMCYGA1UECxMfQ2Vy dGlmaWNhdGlvbiBTZXJ2aWNlcyBEaXZpc2lvbjEkMCIGA1UEAxMbVGhhd3RlIFBlcnNvbmFsIEZy ZWVtYWlsIENBMSswKQYJKoZIhvcNAQkBFhxwZXJzb25hbC1mcmVlbWFpbEB0aGF3dGUuY29tMIGf MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDUadfUsJRkW3HpR9gMUbbqcpGwhF59LQ2PexLfhSV1 KHQ6QixjJ5+Ve0vvfhmHHYbqo925zpZkGsIUbkSsfOaP6E0PcR9AOKYAo4d49vmUhl6t6sBeduvZ FKNdbnp8DKVLVX8GGSl/npom1Wq7OCQIapjHsdqjmJH9edvlWsQcuQIDAQABoxMwETAPBgNVHRMB Af8EBTADAQH/MA0GCSqGSIb3DQEBBAUAA4GBAMfskn5O+PWWpWdiKqTwTRFg0G+NYFhhrCa7UjVc CM8w+6hKloofYkIjjBcP9LpknBesRynfnZhe0mxgcVyirNx54+duAEcftQ0o6AKd5Jr9E/Sm2Xyx +NxfIyYJkYBz0BQb3kOpgyXy5pwvFcr+pquKB3WLDN1RhGvk+NHOd6KBMYIDWjCCA1YCAQEwgZow gZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUgVG93 bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQLExRDZXJ0aWZpY2F0ZSBTZXJ2aWNlczEoMCYGA1UE AxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIwMDAuOC4zMAIDBYFHMAkGBSsOAwIaBQCgggIVMBgG CSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTAyMDExMjE4NDYxOFowIwYJ KoZIhvcNAQkEMRYEFPDYaoBRkL6ck6/zuwPP4iP8peeMMFgGCSqGSIb3DQEJDzFLMEkwCgYIKoZI hvcNAwcwDgYIKoZIhvcNAwICAgCAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMAcGBSsOAwIaMAoG CCqGSIb3DQIFMIGrBgkrBgEEAYI3EAQxgZ0wgZowgZIxCzAJBgNVBAYTAlpBMRUwEwYDVQQIEwxX ZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUgVG93bjEPMA0GA1UEChMGVGhhd3RlMR0wGwYDVQQL ExRDZXJ0aWZpY2F0ZSBTZXJ2aWNlczEoMCYGA1UEAxMfUGVyc29uYWwgRnJlZW1haWwgUlNBIDIw MDAuOC4zMAIDBYFHMIGtBgsqhkiG9w0BCRACCzGBnaCBmjCBkjELMAkGA1UEBhMCWkExFTATBgNV BAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMQ8wDQYDVQQKEwZUaGF3dGUxHTAb BgNVBAsTFENlcnRpZmljYXRlIFNlcnZpY2VzMSgwJgYDVQQDEx9QZXJzb25hbCBGcmVlbWFpbCBS U0EgMjAwMC44LjMwAgMFgUcwDQYJKoZIhvcNAQEBBQAEgYBRpM2aGGdUV0tkKM6pxu/xzs0oFy9F BnFAxjzI766VrioO+MQpxzxmM83g7ZvWOIV1/HVdZ2iCMLn242eWLvwzaQpqRvqzq7sidAdEi2ZJ eVnB1aTzrXeI/9+M4wHSMPB7ofTGcxeAtsfOv4mh5QUwdkBL1GoZxHe7loyMmyVpDwAAAAAAAA== ------=_NextPart_000_0017_01C19B56.5D7FBDB0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message From owner-freebsd-net Sat Jan 12 15: 1:19 2002 Delivered-To: freebsd-net@freebsd.org Received: from mail.du.gtn.com (mail.du.gtn.com [194.77.9.57]) by hub.freebsd.org (Postfix) with ESMTP id 2B2D337B41E for ; Sat, 12 Jan 2002 15:01:13 -0800 (PST) Received: (from uucp@localhost) by mail.du.gtn.com (8.11.0.Beta3/8.11.0.Beta3) id g0CN1An11881 for freebsd-net@freebsd.org; Sun, 13 Jan 2002 00:01:10 +0100 (MET) >Received: (from andreas@localhost) by klemm.gtn.com (8.11.6/8.11.3) id g0CMneY12328 for freebsd-net@freebsd.org; Sat, 12 Jan 2002 23:49:40 +0100 (CET) (envelope-from andreas) Date: Sat, 12 Jan 2002 23:49:40 +0100 From: Andreas Klemm To: freebsd-net@freebsd.org Subject: 4.4-stable from 11.01.2002: nat doesn't run with ipfw profile "simple" Message-ID: <20020112224940.GA12199@titan.klemm.gtn.com> Mime-Version: 1.0 Content-Disposition: inline User-Agent: Mutt/1.3.23.1i X-Operating-System: FreeBSD 4.5-RC X-Disclaimer: A free society is one where it is safe to be unpopular Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="sm4nu43k4a2Rpi4c" Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --sm4nu43k4a2Rpi4c Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi ! I can't give you all details, since currently I don't have root access to the machine, only user via ssh (forgot to install su2 or to put me into the right group, *argh* ;-) ... will last up to monday, but maybe you can answer me, if perhaps there is a problem with nat or my basic config. People usually use squid for http and ftp. But they want have access to internet radio, upload files to remote webservers via ftp and such ... And this currently (surprisingly) doesn't work. One iMAC uses in Netscape direct connection to internet, the other uses squid. Squid works, direct access to internet not. Default gateway is o.k., set to internal fxp0 interface. FreeBSD is also a caching DNS server ... there no problem. Traffic originating from FreeBSD machine doesn't have problems. Traffic (for example web, port 80) originating from internal net to external net without going over squid doesn't work ... Although FreeBSD already offers nice firewall rules for a firewall with 2 interfaces and nat ... The FreeBSD version is a 4.4-20020111-STABLE machine. Two fxp interfaces, fxp0 for inside, fxp1 for outside (DMZ, one IP in a /29). In rc.conf I use: firewall_enable=3D"YES" # Set to YES to enable firewall functiona= lity firewall_type=3D"simple" # Firewall type (see /etc/rc.firewall) firewall_logging=3D"YES" # Set to YES to enable events logging gateway_enable=3D"YES" # Set to YES if this host will be a gatew= ay. natd_enable=3D"YES" # Enable natd (if firewall_enable =3D=3D = YES). natd_interface=3D"fxp1" # Public interface or IPaddress to use. natd_flags=3D"-l -s -m" # Additional flags for natd. icmp_drop_redirect=3D"YES" # Set to YES to ignore ICMP REDIRECT pack= ets icmp_log_redirect=3D"YES" # Set to YES to log ICMP REDIRECT packets log_in_vain=3D"YES" # YES to log connects to ports w/o listene I compiled a custom kernel with these settings: options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #print information about dropped pa= cketsoptions IPFIREWALL_VERBOSE_LIMIT=3D900 #limit verbosity options IPDIVERT #divert sockets options IPSTEALTH #support for stealth forwarding options RANDOM_IP_ID options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN options ICMP_BANDLIM I changed "simple" in rc.firewall to use the right IP addresses: oif=3D"fxp1" onet=3D"213.168.x.y" omask=3D"255.255.255.248" oip=3D"213.168.65.20" iif=3D"fxp0" inet=3D"192.168.100.0" imask=3D"255.255.255.0" iip=3D"192.168.100.200" [...] I allowd ssh from 2 certain IPs, no problem ... Only inside -> outside via NAT doesn't work. The manpage tells, you need IP forwarding and IPDIVERT in the kernel ... I did so ... What I tried: - I tried removing -s and -m from natd flags. No success. - I tried to use fxp0 (the internal interface) instead of fxp0 to be natd_interface. No success. - I tried to put the natd divert rule to be the first by using the number "50" like in firewall_type=3D"open" config: ${fwcmd} add 50 divert natd all from any to any via ${natd_interface} Normal for firewall_type=3D"simple" is: ${fwcmd} add divert natd all from any to any via ${natd_interface} No success. What works is firewall_type=3D"open". But this I don't want ;-) Too bad, currently no root access, so I'm unable to reconfigure and do a ipfw show .. Another bad thing is that I forgot to change natd_interface back to "fxp1"... How does natd work exactly ? What can go wrong. In the past I used own firewall rules, to deny some incoming traffic on the external interface (smtp, dns, ......) and then allowed everything. In the middle then the divert rule ... THis way nat worked with FreeBSD 4.2. Now I wanted to create a better firewall on the new machine and our "simple" template doesn't work out of the box ... Or are some kernel options not o.k. for natd ??? What can I give you more on monday or tuesday .. ? More beef better via personal mail, not mailing-list. I could arrange ssh access, if you are willed and if that helps you more... Andreas /// --=20 Andreas Klemm - Powered by FreeBSD Need a magic printfilter today ? http://www.apsfilter.org/ Songs from our band >> 64Bits << http://www.64bits.de Inofficial band pages with add-on stuff http://www.apsfilter.org/64bits.ht= ml --sm4nu43k4a2Rpi4c Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: Weitere Infos: siehe http://www.gnupg.org iD8DBQE8QL2Dd3o+lGxvbLoRAmpwAKCH7bn6tfDbIIqOQOaJr++7F0GTpQCdFjV3 8gCptGdd+4A0MBmX8s4kj+k= =8hLt -----END PGP SIGNATURE----- --sm4nu43k4a2Rpi4c-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message