From owner-freebsd-questions@FreeBSD.ORG Thu Feb 5 05:47:25 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4D1BE16A4CE for ; Thu, 5 Feb 2004 05:47:25 -0800 (PST) Received: from spock.dilkie.com (spock.dilkie.com [206.51.1.40]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6A57A43D5D for ; Thu, 5 Feb 2004 05:47:22 -0800 (PST) (envelope-from lee@dilkie.com) Received: from borg (borg.dilkie.com [206.51.1.193]) (authenticated bits=0) by spock.dilkie.com (8.12.10/8.12.10) with ESMTP id i15Dl8Au065283 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NO); Thu, 5 Feb 2004 08:47:09 -0500 (EST) (envelope-from lee@dilkie.com) From: "Lee Dilkie" To: "'Alexander Botov'" , Date: Thu, 5 Feb 2004 08:47:07 -0500 Message-ID: <00c301c3ebee$8c12ec20$c10133ce@dilkie.com> X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.6604 (9.0.2911.0) In-Reply-To: <004f01c3ebea$5974d750$0200a8c0@ALIENX> Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 X-Scanned-By: MIMEDefang 2.39 Subject: RE: forwarding with ttl=1 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Feb 2004 13:47:25 -0000 > > Hi All > > I am newbie with configuring networks under FreeBSD . I have > small network with gateway running on FreeBSD 5.2 Release .My > ISP offers me pppoe service for connecting to Internet . I > didn't have problems with configuring ppp with pppoe . I used > nat option wchich works fine for masquerading the local > network from the world . The problem is that the ISP's > gateway returns every time packets with ttl=1 which makes > further forwarding impossible . My gateway returns icmp error > mesage "time exceeded" and discards packets . I want to know > if I made some mistake with configuring nat service or if not > what is the solution of the problem ? Is there any service > that can increment ttl and process the packet ? I tried to > avoid the checking of ttl in the ip_forward() function in > ip_input.c and skipping the decrement of ttl and everything > works fine but i think that this is very ugly kernel hack . > Probably there is an easy and elegant solution . Any ideas ? > TTL (Time To Live) is a counter value in an IP packet that gets decremented by every "hop" (router). When it reaches a value of zero, the packet is discarded. Using a TTL of 1 isn't going to be very useful as your packets will all be discarded at the first router. This is working as intended. Normally, TTL is set to 128-ish.