From owner-freebsd-questions@FreeBSD.ORG  Wed Apr  2 09:25:20 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id A1E7137B401; Wed,  2 Apr 2003 09:25:20 -0800 (PST)
Received: from E-Machine.x386.net (e-machine.x386.net [207.5.176.28])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id EBBEE43FCB; Wed,  2 Apr 2003 09:25:19 -0800 (PST)
	(envelope-from jcoombs@E-Machine.x386.net)
Received: from E-Machine.x386.net (localhost [127.0.0.1])
	by E-Machine.x386.net (8.12.6p2/8.12.6) with ESMTP id h32HP5dA000114;
	Wed, 2 Apr 2003 12:25:13 -0500 (EST)
	(envelope-from jcoombs@E-Machine.x386.net)
Received: (from root@localhost)
	by E-Machine.x386.net (8.12.6p2/8.12.6/Submit) id h32HGuSa000284;
	Wed, 2 Apr 2003 12:16:56 -0500 (EST)
Date: Wed, 2 Apr 2003 12:16:56 -0500 (EST)
Message-Id: <200304021716.h32HGuSa000284@E-Machine.x386.net>
To: FreeBSD-gnats-submit@freebsd.org
From: Joshua Coombs <kurlon@x386.net>
X-send-pr-version: 3.113
X-GNATS-Notify: 
cc: freebsd-questions@freebsd.org
Subject: ips.evil counter fails to incriment
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Joshua Coombs <kurlon@x386.net>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Apr 2003 17:25:21 -0000


>Submitter-Id:	current-users
>Originator: 	Joshua Coombs	
>Organization:	x386.net
>Confidential:	no 
>Synopsis:	ips.evil counter fails to incriment
>Severity:	serious
>Priority:	medium
>Category:	standards	
>Class:		sw-bug
>Release:	FreeBSD 4.7-RELEASE-p10 i386
>Environment:
System: FreeBSD E-Machine.x386.net 4.7-RELEASE-p10 FreeBSD 4.7-RELEASE-p10 #0: Tue Apr 1 18:52:17 EST 2003 root@E-Machine.x386.net:/usr/obj/usr/src/sys/GENERIC i386


>Description:  After applying ftp://ftp.jurai.net/users/winter/patches/rfc3514-stable.patch and rebuilding world/kernel, rfc 3514 support appears to function, however the provided interface for tracking recieved 'evil' packets does not appear to work.
>How-To-Repeat:
apply the patch
rebuild world/kernel
enable rfc3514 support
  sysctl -w  net.inet.ip.rfc3514=1
verify hear_no_evil and speak_no_evil are disabled
  sysctl -w net.inet.ip.hear_no_evil=0
  sysctl -w net.inet.ip.speak_no_evil=0
generate 'evil' packets
  ping -c 10 -E localhost
see if the system noticed the 'evil' packets
  netstat -s | grep -i evil
Currently the counter stays at 0 although it responds to 'evil' pings.
>Fix: