Date: Mon, 13 Oct 2014 11:42:08 +0200 From: Harald Schmalzbauer <h.schmalzbauer@omnilan.de> To: "Alexander V. Chernikov" <melifaro@FreeBSD.org> Cc: "freebsd-net@freebsd.org" <freebsd-net@FreeBSD.org>, FreeBSD <freebsd-stable@FreeBSD.org> Subject: Re: Deleting IPv4 iface-routes from extra FIBs Message-ID: <543B9E70.9060609@omnilan.de> In-Reply-To: <543B998D.2020003@FreeBSD.org> References: <53569ABA.60007@omnilan.de> <CA%2BP_MZH_iScuJ4S=xiKocnEwTzT1eRJPNpJKbboZDfG3B=TBzA@mail.gmail.com> <535771F3.4070007@freebsd.org> <543B8ED5.6040206@omnilan.de> <543B9075.2000102@FreeBSD.org> <543B9873.3040605@omnilan.de> <543B998D.2020003@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig81B20D416B47109DFDD66864 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Bez=C3=BCglich Alexander V. Chernikov's Nachricht vom 13.10.2014 11:21 (localtime): > On 13.10.2014 13:16, Harald Schmalzbauer wrote: >> Bez=C3=BCglich Alexander V. Chernikov's Nachricht vom 13.10.2014 10:= 42 >> (localtime): >>> On 13.10.2014 12:35, Harald Schmalzbauer wrote: >>>> Bez=C3=BCglich Julian Elischer's Nachricht vom 23.04.2014 09:55 >>>> (localtime): >> ... >>>>> yes, we made two behaviours. >>>>> Add interface routes to all active FIBS or only add them to the fir= st >>>>> fib and let the user populate other fibs as needed. >>>>> It appears you want the second behaviour, so I suggest you use that= >>>>> option and set up all your routes manually. >>>> Hello, >>>> >>>> last time I had the iface-route problem, I just reverted r248895 (fo= r >>>> 9.3). There was inconsitent behaviour with v6 iface routes and >>>> net.add_addr_allfibs=3D0. >>>> Now I checked with 10.1 ans it seems net.add_addr_allfibs=3D0 doesn'= t >>>> work >>>> any more: >>>> netstat -f inet -nr >>>> Routing tables >>>> >>>> Internet: >>>> Destination Gateway Flags Netif Expire >>>> default 172.21.32.1 UGS egn >>>> 127.0.0.1 link#2 UH lo0 >>>> 172.21.32.0/19 link#1 U egn >>>> 172.21.35.1 link#1 UHS lo0 >>>> >>>> netstat -F 1 -f inet -nr >>>> Routing tables (fib: 1) >>>> >>>> Internet: >>>> Destination Gateway Flags Netif Expire >>>> 127.0.0.1 link#2 UH lo0 >>>> 172.21.32.0/19 link#1 U egn >>>> >>>> 'sysctl net.add_addr_allfibs' >>>> net.add_addr_allfibs: 0 >>> Are you sure net.add_addr_allfibs was applied before interface addres= s >>> added? >> Sorry, I messed it up. Forgot that on my production systems (where I >> tested), / is read-only with /etc as union-mount. >> Adding net.add_addr_allfibs=3D0 to the correct sysctl.conf made the in= et >> routing table stay empty. >> >> But unfortunately not the inet6 routing table :-( >> So I still need to delete iface routes for my jail setups, hence need = to >> revert r248895. > Hm. If the problem happens with inet6 routes only, why do you need to > revert r248895 ?=20 For consistency. Either I populate own iface-routes for both, inet and inet6, or I clean both. The latter is what my script has been doing for some time (I think I wrote it when I tested 9.1-RC), so for me it's much less effort to make my script working by reverting r248895 instead of adding another one which cares about inet (v4) only (for the moment). Probably net.add_addr_allfibs will also influence inet6 routing as well in the future, then I'll redo my rc.jails_fibprepare. Thanks, -Harry --------------enig81B20D416B47109DFDD66864 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (FreeBSD) iEYEARECAAYFAlQ7nnEACgkQLDqVQ9VXb8h86gCgr59GmiQsbjteXxN5zlvKL6cU CZsAoKEz0GhkZNIR5a5iqi1Q88+QwFPy =8eck -----END PGP SIGNATURE----- --------------enig81B20D416B47109DFDD66864--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?543B9E70.9060609>