From owner-freebsd-current@FreeBSD.ORG Mon May 21 23:17:12 2007 Return-Path: X-Original-To: freebsd-current@freebsd.org Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 84A8316A469 for ; Mon, 21 May 2007 23:17:12 +0000 (UTC) (envelope-from jfvogel@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.244]) by mx1.freebsd.org (Postfix) with ESMTP id 410B413C4BA for ; Mon, 21 May 2007 23:17:12 +0000 (UTC) (envelope-from jfvogel@gmail.com) Received: by an-out-0708.google.com with SMTP id d23so414547and for ; Mon, 21 May 2007 16:17:11 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=qopugN+v4FWepGtIa8ApJRW1P+G4cpCfbfPTszEMiVlUhspzLwLp9rOdW9JPpEzuQA+J9SbeIJrrMNMWF0wEaEbeyAGU+/aTgaH+35GumNlzBS2riJiV2kyi+bC8B0cOvMJAAp0c5HBd/cETfAeiznby1kab8UhOGxPluxrmGVA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=UJclGRvztwbCaOcS23gmhkfzgwhR7/ggICVh4S0GcmGVtNPiAHyVG3HPazXfnmPkn9a+sgZvUdNWnlh63VB+Mui964SPcAtWMrIK1FCqluCjIqU8KvTBONRFcSCY3I4oQYEjx4QL06nBF5GlCUJIjBKzFHKrSkmikvrli8WLsv0= Received: by 10.115.89.1 with SMTP id r1mr2978961wal.1179789428077; Mon, 21 May 2007 16:17:08 -0700 (PDT) Received: by 10.114.126.10 with HTTP; Mon, 21 May 2007 16:17:07 -0700 (PDT) Message-ID: <2a41acea0705211617p17f74964oabdc88564376ada3@mail.gmail.com> Date: Mon, 21 May 2007 16:17:07 -0700 From: "Jack Vogel" To: "Sten Spans" In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: Cc: Ian FREISLICH , freebsd-current@freebsd.org Subject: Re: em0 hijacking traffic to port 623 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 May 2007 23:17:12 -0000 On 5/21/07, Sten Spans wrote: > On Mon, 21 May 2007, Ian FREISLICH wrote: > > > Hi > > > > We've noticed an issue on our firewalls where the first em device > > in the system hijacks inbound port 623 tcp and udp. The OS never > > sees this traffic. Interestingly, em1 and em2 do not appear to be > > afflicted by this problem. Some reading I've done points to a > > similar conclusion: > > > > http://blogs.sun.com/shepler/entry/port_623_or_the_mount > > > > I've looked at the bios, but I can't find any settings that remotely > > hint IPMI or RMCP+ or serial-over-lan. > > > > Does anyone know how I can stop the card or system from stealing > > port 623 in hardware or must I just stop using em0 (and/or Intel NICS)? > > Does "ifconfig em0 promisc" help ? > That fixed firmware related vanishing ipv6 packets on fxp and em. Is this happening even with the latest CURRENT driver, there is code in it now that is supposed to stop the firmware from doing that, at least that was the theory :) Jack