From owner-freebsd-net@FreeBSD.ORG Mon Oct 17 13:11:23 2005 Return-Path: X-Original-To: net@freebsd.org Delivered-To: freebsd-net@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 88A7516A41F for ; Mon, 17 Oct 2005 13:11:23 +0000 (GMT) (envelope-from peter@alastria.net) Received: from pigwidgeon.lancs.ac.uk (pigwidgeon.lancs.ac.uk [148.88.0.67]) by mx1.FreeBSD.org (Postfix) with ESMTP id 694A143D5C for ; Mon, 17 Oct 2005 13:11:19 +0000 (GMT) (envelope-from peter@alastria.net) Received: from exchange-fe1.lancs.ac.uk ([148.88.1.22] helo=exchange-fe1.lancs.local) by pigwidgeon.lancs.ac.uk with esmtp (Exim 4.52) id 1ERUln-0005jl-ED for net@freebsd.org; Mon, 17 Oct 2005 14:11:15 +0100 Received: from [148.88.132.153] ([148.88.132.153]) by exchange-fe1.lancs.local with Microsoft SMTPSVC(5.0.2195.6713); Mon, 17 Oct 2005 14:11:12 +0100 Message-ID: <4353A2F5.8040108@alastria.net> Date: Mon, 17 Oct 2005 14:11:17 +0100 From: Peter Wood User-Agent: Mozilla Thunderbird 1.0.6 (X11/20051013) X-Accept-Language: en-us, en MIME-Version: 1.0 To: net@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 17 Oct 2005 13:11:12.0894 (UTC) FILETIME=[3F9101E0:01C5D31C] Cc: Subject: More then 32 bfp devices on Freebsd 5.4-RELEASE-p7 X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 17 Oct 2005 13:11:23 -0000 Good Afternoon, I'm now working at a large UK university in their network support department, as such one of my duties is to monitor the residences network. To this end I have a cloned nic for every vlan that we have on resnet. It roughly comes to over 50 vlans, and FreeBSD its self copes very nicely. However I've run into a small problem when using nmap (and a tiny one in Ethereal). Unless you specify the source address and source interface for scans nmap will open every network device with bpf. The problem comes when it hits the 33rd interface to open, nmap exits. [eclair:~]# nmap -P0 -p 1-65535 -sS 10.34.96.168 Starting nmap 3.93 ( http://www.insecure.org/nmap/ ) at 2005-10-17 14:03 BST getinterfaces: Failed to open ethernet interface (resnet737) QUITTING! If I truss I get the following: open("/dev/bpf29",0x1,01002230274) ERR#16 'Device busy' open("/dev/bpf30",0x1,01002230274) ERR#16 'Device busy' open("/dev/bpf31",0x1,01002230274) ERR#16 'Device busy' write(2,0xbfbfab40,60) = 60 (0x3c) getinterfaces: Failed to open ethernet interface (resnet737) So the question is, how can I allow more then 32 bpf devices, in the old 4.X series I'd have just tagged a number on the end of the kernel line. Any suggestions apreciated, Pete.