From owner-freebsd-stable  Sun Sep 23 23: 9:44 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from areilly.bpc-users.org (CPE-144-132-234-126.nsw.bigpond.net.au [144.132.234.126])
	by hub.freebsd.org (Postfix) with SMTP id 6B57937B413
	for <freebsd-stable@FreeBSD.ORG>; Sun, 23 Sep 2001 23:09:39 -0700 (PDT)
Received: (qmail 10931 invoked by uid 1000); 24 Sep 2001 06:09:37 -0000
From: "Andrew Reilly" <areilly@bigpond.net.au>
Date: Mon, 24 Sep 2001 16:09:36 +1000
To: Joe Abley <jabley@automagic.org>
Cc: Juha Saarinen <juha@saarinen.org>, freebsd-stable@FreeBSD.ORG
Subject: Re: 127/8 continued
Message-ID: <20010924160936.A10863@gurney.reilly.home>
References: <00ca01c144ae$53440710$0a01a8c0@den2> <20010924001714.Y4205@buffoon.automagic.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010924001714.Y4205@buffoon.automagic.org>; from jabley@automagic.org on Mon, Sep 24, 2001 at 12:17:14AM -0400
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

On Mon, Sep 24, 2001 at 12:17:14AM -0400, Joe Abley wrote:
> On Mon, Sep 24, 2001 at 04:06:45PM +1200, Juha Saarinen wrote:
> > Misunderstood what Lamont was trying to show earlier... but he's right:
> > FreeBSD sends 127/8 out on the 'Net:
> 
> I don't think FreeBSD is non-compliant for sending packets with
> destination 127/8 out onto the net, but I guess it could make it
> harder for users to send packets with moronic destinations out.
> 
> --- rc.network.orig     Mon Sep 24 00:08:17 2001
> +++ rc.network  Mon Sep 24 00:14:05 2001
> @@ -346,6 +346,13 @@
>                 done
>         fi
>  
> +       # Add a blackhole static route for 127/8, since packets with
> +       # that destination should be caged up and starved
> +       lo0_inet=$(ifconfig lo0 | awk '($1 == "inet") { print $2; exit; }')
> +       if [ -n "${lo0_inet}" ]; then
> +               route add 127.0.0.0 -netmask 255.0.0.0 ${lo0_inet} -blackhole
> +       fi
> +
>         echo -n 'Additional routing options:'
>         case ${tcp_extensions} in
>         [Yy][Ee][Ss] | '')

Why -blackhole?

Those packets are _supposed_ to get back to this host.  That's
what loopback is for.

I've been using this in /etc/rc.local for a long time:

echo -n ', fixing localhost net route'
route add -net 127. -netmask 255.0.0.0 -iface lo0

Can't remember when I started.  Basically as soon as I
discovered that the wrong thing was happening.

-- 
Andrew

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message