From owner-freebsd-net@FreeBSD.ORG Wed Oct 31 21:51:42 2007 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A9FD516A419; Wed, 31 Oct 2007 21:51:42 +0000 (UTC) (envelope-from matus.harvan@inf.ethz.ch) Received: from XSMTP0.ethz.ch (xsmtp0.ethz.ch [82.130.70.14]) by mx1.freebsd.org (Postfix) with ESMTP id B5F5A13C4A7; Wed, 31 Oct 2007 21:51:36 +0000 (UTC) (envelope-from matus.harvan@inf.ethz.ch) Received: from xfe0.d.ethz.ch ([82.130.124.40]) by XSMTP0.ethz.ch with Microsoft SMTPSVC(6.0.3790.3959); Wed, 31 Oct 2007 22:17:22 +0100 Received: from styx.inf.ethz.ch ([77.56.104.89]) by xfe0.d.ethz.ch over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Wed, 31 Oct 2007 22:17:22 +0100 Received: by styx.inf.ethz.ch (Postfix, from userid 1001) id B309F49ACA9; Wed, 31 Oct 2007 22:17:21 +0100 (CET) Date: Wed, 31 Oct 2007 22:17:21 +0100 From: Matus Harvan To: "Bruce M. Simpson" Message-ID: <20071031211721.GA2086@styx.ethz.ch> References: <20070909201837.GA18107@inf.ethz.ch> <20071026154057.GG1049@styx.ethz.ch> <4722AEB3.1010208@FreeBSD.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="bg08WKrSYDhXBjb5" Content-Disposition: inline In-Reply-To: <4722AEB3.1010208@FreeBSD.org> User-Agent: Mutt/1.5.16 (2007-06-09) X-OriginalArrivalTime: 31 Oct 2007 21:17:22.0807 (UTC) FILETIME=[6D868070:01C81C03] Cc: freebsd-net@freebsd.org, Brooks Davis , Max Laier Subject: Re: UDP catchall X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Oct 2007 21:51:42 -0000 --bg08WKrSYDhXBjb5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, Oct 27, 2007 at 04:21:23AM +0100, Bruce M. Simpson wrote: > Matus Harvan wrote: >> Hi, >>=20 >> I was wondering if I could get some feedback about the patch and >> whether others think it could be committed. >> =20 >=20 > The UDP catchall patch as submitted here clashes with the blackhole=20 > functionality, and also bypasses the update of the protocol statistics an= d=20 > unreachable port rate limiting. It is not yet suitable for a production= =20 > kernel. I do not see how it clashes with the blackhole functionality. If catchall is enabled then a UDP packet destined for port, which is not used by any other UDP socket, is passed to rip_input() and would show up on the raw socket. This happens irrespective of te blackhole functionality being enabled or not. I think the protocol statistics for UDP are updated. Which one is missing? The catchall feature has its own rate limit, catchallr. This is different from the unreachable port rate limit. Hence, I don't see a problem in bypassing the unreachable port rate limiting. > It probably shouldn't trigger the log_in_vain message, however that log= =20 > message is misleading anyway (the reception of UDP datagrams destined for= =20 > unbound ports is not a 'connection attempt'). I think the log_in_vain message is triggered only if the packet is not passed to the raw socket, i.e., if catchalllim is exhausted. Then the normal way for processing the packet is followed. Is this what you have meant with triggering the log_in_vain message? Matus --bg08WKrSYDhXBjb5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHKPDh43LQWDWf0QIRAp0kAJ9LZsnXDEhjzzg/NOpSQJg+SJ8T7gCgmSPY dvLHqUqa60rnD2loyevFx/k= =O/iz -----END PGP SIGNATURE----- --bg08WKrSYDhXBjb5--