From owner-freebsd-bugs@FreeBSD.ORG Sat Jul 30 07:40:08 2011 Return-Path: Delivered-To: freebsd-bugs@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D51F9106564A for ; Sat, 30 Jul 2011 07:40:08 +0000 (UTC) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (freefall.freebsd.org [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id B1B578FC1A for ; Sat, 30 Jul 2011 07:40:08 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id p6U7e8id079440 for ; Sat, 30 Jul 2011 07:40:08 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id p6U7e89k079439; Sat, 30 Jul 2011 07:40:08 GMT (envelope-from gnats) Resent-Date: Sat, 30 Jul 2011 07:40:08 GMT Resent-Message-Id: <201107300740.p6U7e89k079439@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Charles Sprickman Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CCE19106566C for ; Sat, 30 Jul 2011 07:33:23 +0000 (UTC) (envelope-from nobody@FreeBSD.org) Received: from red.freebsd.org (red.freebsd.org [IPv6:2001:4f8:fff6::22]) by mx1.freebsd.org (Postfix) with ESMTP id BCD2B8FC14 for ; Sat, 30 Jul 2011 07:33:23 +0000 (UTC) Received: from red.freebsd.org (localhost [127.0.0.1]) by red.freebsd.org (8.14.4/8.14.4) with ESMTP id p6U7XN1Y009918 for ; Sat, 30 Jul 2011 07:33:23 GMT (envelope-from nobody@red.freebsd.org) Received: (from nobody@localhost) by red.freebsd.org (8.14.4/8.14.4/Submit) id p6U7XNcM009911; Sat, 30 Jul 2011 07:33:23 GMT (envelope-from nobody) Message-Id: <201107300733.p6U7XNcM009911@red.freebsd.org> Date: Sat, 30 Jul 2011 07:33:23 GMT From: Charles Sprickman To: freebsd-gnats-submit@FreeBSD.org X-Send-Pr-Version: www-3.1 Cc: Subject: bin/159305: syslogd can't bind to multiple specific IPs X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 30 Jul 2011 07:40:08 -0000 >Number: 159305 >Category: bin >Synopsis: syslogd can't bind to multiple specific IPs >Confidential: no >Severity: serious >Priority: low >Responsible: freebsd-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Sat Jul 30 07:40:08 UTC 2011 >Closed-Date: >Last-Modified: >Originator: Charles Sprickman >Release: FreeBSD 8.2 >Organization: >Environment: >Description: Recently many daemons that had a long history of only being able to bind to all available IPs have been modified to accept a runtime flag to allow binding to one or more specific IPs. With the wide use of FreeBSD in environments where the host may be on multiple networks (internal, external, management, etc.) and with jails becoming more common, it's becoming necessary for any service to be able to bind to one or more specific IPs. Firewalls can of course block access for traffic entering on unwanted interfaces, but jails present an issue with binding to all available IPs - if you run the same service in a jail, that service cannot bind since the jail's host is using the IP. mountd, nfsd, rpcinfo and others have been changed to allow the administrator to specify either a single IP to bind to (-h option) or a list of IPs to bind to (multiple -h options). syslogd does have the "-b" option, but it only can be called once. If the administrator passes multiple "-b" options, the last one specified is the only one syslogd binds to. >How-To-Repeat: Start syslogd with multiple "-b" options. It will only bind to the last one in the argument list. >Fix: Steal code from other udp daemons that support this. :) >Release-Note: >Audit-Trail: >Unformatted: