Date: Tue, 07 Jul 1998 08:10:47 -0700 From: David Greenman <dg@root.com> To: Samuel S Thomas <sthomas@lart.net> Cc: Poul-Henning Kamp <phk@critter.freebsd.dk>, freebsd-bugs@FreeBSD.ORG Subject: Re: kern/7191: FreeBSD 2.2.6 generates Source-route prohibited when not routing Message-ID: <199807071510.IAA25223@implode.root.com> In-Reply-To: Your message of "Tue, 07 Jul 1998 14:58:02 -0000." <19980707145802.D1918@lart.net>
index | next in thread | previous in thread | raw e-mail
>> It is probably a bug that source route IP options are processed at all >> when a machine isn't configured for IP forwarding. While fixing this would >> supress your warnings, it wouldn't fix the real problem which is why the >> machine is seeing the packets in the first place. > >This is exactly my point. This is mentioned fairly clearly in rfc1122, >also. I will agree to work with the PAO people on determining how those >packets are getting to the IP layer without being discarded by the >interface, so long as you core kernel-hacker types agree that the kernel >should know whether or not it's routing, and check IP src/dst addresses >accordingly. Fair enough? You deleted the first part of what I said which was that checking source/ destination IP address doesn't work at this point since it will never match for routers. The IP address is of course checked when the destination is the local machine. I should also like to point out that when IP forwarding is disabled, FreeBSD doesn't forward source routed packets where the destination is not the local machine. It does process the source route IP options prior to discarding the packet in the !ipforward case, however, and that is why the console message comes out and also why the ICMP message is sent. I'll fix this in a few minutes. > There does appear to be a check in their if_ep.c, though... That check is only for promiscuous mode. This tells us that bogus packets are getting through even though promiscuous mode [apparantly] isn't enabled. -DG David Greenman Co-founder/Principal Architect, The FreeBSD Project To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the messagehelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807071510.IAA25223>