From owner-freebsd-questions@FreeBSD.ORG Fri Jul 15 14:32:25 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4221D16A41C for ; Fri, 15 Jul 2005 14:32:25 +0000 (GMT) (envelope-from nalists@scls.lib.wi.us) Received: from mail.scls.lib.wi.us (mail.scls.lib.wi.us [198.150.40.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id DD7F343D4C for ; Fri, 15 Jul 2005 14:32:24 +0000 (GMT) (envelope-from nalists@scls.lib.wi.us) Received: from [172.26.2.238] ([172.26.2.238]) by mail.scls.lib.wi.us (8.12.9p2/8.12.9) with ESMTP id j6FEWNG1004378; Fri, 15 Jul 2005 09:32:24 -0500 (CDT) (envelope-from nalists@scls.lib.wi.us) Message-ID: <42D7C856.9070209@scls.lib.wi.us> Date: Fri, 15 Jul 2005 09:29:42 -0500 From: Greg Barniskis User-Agent: Mozilla Thunderbird 1.0.5 (Windows/20050711) X-Accept-Language: en-us, en MIME-Version: 1.0 To: Joseh Martins References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Freebsd bad routing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 15 Jul 2005 14:32:25 -0000 Joseh Martins wrote: > Hello, > > I have a Freebsd server and some bad routes are been showed to me. > > Well, I didnt configured any routing protocols ... > > With the command "netstat -r" I got a lot of routes with "UGHD" flags. > I just need the default route (gateway). > > With the command "netstat -rs" I got this message: > "127 bad routing redirects > 1091 dynamically created routes" > > I appreciate some help. > Tks a lot.. UGHD would seem to indicate that your box has been told (by ICMP redirects) not to use your configured default gateway to reach a specific host, but to use a different gateway instead. It is not necessarily a bad thing. My guess: either (a) there are two or more available gateways upstream from you and they are legitimately collaborating to inform you of the best (possibly only) routes to use to get to various destinations, or (b) you are getting bad ICMP redirects from somewhere, either accidental or intentional. If you know that one or more of the indicated UGHD routes is just plain wrong, that would be bad (maybe a spoofing or DoS attack of some kind). If you are unsure whether the routes are valid or not, contact the route provider upstream from you for clarification of whether this is legitimate (and whether you have specified the correct default gateway in the first place). -- Greg Barniskis, Computer Systems Integrator South Central Library System (SCLS) Library Interchange Network (LINK) , (608) 266-6348