From owner-freebsd-hackers  Thu Aug  9  9:47:59 2001
Delivered-To: freebsd-hackers@freebsd.org
Received: from ussenterprise.ufp.org (ussenterprise.ufp.org [208.185.30.210])
	by hub.freebsd.org (Postfix) with ESMTP id 570BF37B403
	for <hackers@FreeBSD.ORG>; Thu,  9 Aug 2001 09:47:56 -0700 (PDT)
	(envelope-from bicknell@ussenterprise.ufp.org)
Received: (from bicknell@localhost)
	by ussenterprise.ufp.org (8.11.1/8.11.1) id f79GluN47961
	for hackers@FreeBSD.ORG; Thu, 9 Aug 2001 12:47:56 -0400 (EDT)
	(envelope-from bicknell)
Date: Thu, 9 Aug 2001 12:47:56 -0400
From: Leo Bicknell <bicknell@ufp.org>
To: hackers@FreeBSD.ORG
Subject: Re: forwarding broadcast
Message-ID: <20010809124756.A47552@ussenterprise.ufp.org>
Mail-Followup-To: Leo Bicknell <bicknell@ussenterprise.ufp.org>,
	hackers@FreeBSD.ORG
References: <20010809113638.A9519@enterprise.spock.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20010809113638.A9519@enterprise.spock.org>; from jon@FreeBSD.ORG on Thu, Aug 09, 2001 at 11:36:38AM -0400
Organization: United Federation of Planets
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG


This is called a 'directed broadcast'.  In the early days there
was no talk of this sort of packet, leading to the assumption that
it should work as you expect.  Many network management packages
did (and some still do) use directed broadcast pings to try and
find all hosts on managed subnets.

Due mainly to smurf amplification (send a directed broadcast ping
to a full subnet with a spoofed source to flood that box) ISP's
(and more slowly) router vendors have turned this feature off in
almost all Internet networks.  The Cisco interface command is 'no
ip directed-broadcast' on an interface.

I would recomend strongly against ever turning it on, in any 
enviornment.  That said, it does not seem unreasonable to provide
the knob, since all major router vendors do and FreeBSD should be
as flexable as any commercial product.


-- 
Leo Bicknell - bicknell@ufp.org
Systems Engineer - Internetworking Engineer - CCIE 3440
Read TMBG List - tmbg-list-request@tmbg.org, www.tmbg.org

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message