Date: Sat, 13 Dec 1997 14:54:02 -0500 From: Dave Chapeskie <dchapes@ddm.on.ca> To: freebsd-hackers@FreeBSD.ORG Cc: J Wunsch <j@uriah.heep.sax.de> Subject: Re: I seriously need some networking help Message-ID: <19971213145402.25283@ddm.on.ca> In-Reply-To: <199712131437.PAA22262@uriah.heep.sax.de>; from J Wunsch on Sat, Dec 13, 1997 at 03:37:55PM %2B0100 References: <199712110048.BAA09610@uriah.heep.sax.de> <Pine.BSF.3.95.971210190020.1361E-100000@alive.znep.com> <199712131437.PAA22262@uriah.heep.sax.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Dec 13, 1997 at 03:37:55PM +0100, J Wunsch wrote: > >> Sure, but that's only a cosmetical problem. I've seen 10.* > >> intermediate network addressess even on major Internet relays when > >> tracerouting. > > > So tell me what happens when the box that interface is on needs to send an > > ICMP message like can't fragment? > > > > What IP does it use? If it uses the private one, you lose. This does > > break things like PMTU-D. > > It doesn't, even if the IP source address is 10.*. As long as the > ICMP packet has the correct recipient address, it will arrive, and the > (original) sender takes the appropriate actions -- it couldn't verify > the validity of the ICMP packet's sender address anyway, be it 10.* or > anything else. But don't the RFCs prohibit any packets with reserved IP numbers from being routed onto the internet? Or doesn't the source address count? I know my firewall drops anything to or from a reserved IP number. -- Dave Chapeskie, DDM Consulting E-Mail: dchapes@ddm.on.ca
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19971213145402.25283>