From owner-freebsd-hackers Tue Aug 6 0:49:26 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CB4A137B400 for ; Tue, 6 Aug 2002 00:49:24 -0700 (PDT) Received: from gull.mail.pas.earthlink.net (gull.mail.pas.earthlink.net [207.217.120.84]) by mx1.FreeBSD.org (Postfix) with ESMTP id 78EB843E65 for ; Tue, 6 Aug 2002 00:49:24 -0700 (PDT) (envelope-from tlambert2@mindspring.com) Received: from pool0211.cvx22-bradley.dialup.earthlink.net ([209.179.198.211] helo=mindspring.com) by gull.mail.pas.earthlink.net with esmtp (Exim 3.33 #1) id 17bz5m-0005MN-00; Tue, 06 Aug 2002 00:49:22 -0700 Message-ID: <3D4F7F4F.97609D75@mindspring.com> Date: Tue, 06 Aug 2002 00:48:31 -0700 From: Terry Lambert X-Mailer: Mozilla 4.79 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: Brad Laue Cc: freebsd-hackers@freebsd.org Subject: Re: ifconfig alias and the 0xffffffff netmask References: <3D4F7539.2090201@brad-x.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Brad Laue wrote: > Minor question regarding this; to recap: > > Creating an IP alias on the same subnet as the original seems under > FreeBSD to require setting the netmask of the alias to 255.255.255.255, > or at least a subnet of the original. > > What impact, if any, will having a /32 netmask on an aliased IP have? > > It seems inconsistent with networking practice regarding interface > aliases, which typically view the aliased IP's simply as distinct hosts > on the same physical network, allowing them to have the same netmask. > This method is used with Cisco IOS and other Unix-like operating > systems. Is it incorrect? 255.255.255.255 means "This is an alias IP address". The actual netmask in effect is the same netmask as the real IP address. The thing that's broken is that you can't have a different netmask from that of the real IP address. Really, this comes down to interfaces and driver structure, and the inability to associate a send-from address with a route entry (route is "out", not "from", so the from address you get is the outbound address). This causes problems with NFS in some cases, since it looks like an aliased server is trying to spoof a response to a client, which expect the response to come from the same IP the request was sent on. I believe this is a FAQ, and it has two paragraphs in the Handbook. -- Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message