Date: Fri, 15 Feb 2002 00:09:47 -0500 From: Michael Meltzer <mjm@michaelmeltzer.com> To: Ruslan Ermilov <ru@FreeBSD.ORG>, Cy Schubert - CITS Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> Cc: Attila Nagy <bra@fsn.hu>, stable@FreeBSD.ORG Subject: Re: 127/8 in ip_output.c Message-ID: <007701c1b5de$feb05260$0b01a8c0@mjm2> References: <mjm@michaelmeltzer.com> <03f401c1b4bb$7f97bfa0$34f820c0@ix1x1000> <200202140030.g1E0UeV97449@cwsys.cwsent.com> <20020214100923.A21603@sunbay.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Your right, but I would never thing of seting the source address to 127*, what people will do :-) Thank You, I tried the patch tonight(sorry for the delay), worked fine, no issues with the rdr rule on 127*, hope it is MFC soon, again Thank You MJM ----- Original Message ----- From: "Ruslan Ermilov" <ru@FreeBSD.ORG> To: "Cy Schubert - CITS Open Systems Group" <Cy.Schubert@uumail.gov.bc.ca> Cc: "Michael Meltzer" <mjm@michaelmeltzer.com>; "Attila Nagy" <bra@fsn.hu>; <stable@FreeBSD.ORG> Sent: Thursday, February 14, 2002 3:09 AM Subject: Re: 127/8 in ip_output.c > On Wed, Feb 13, 2002 at 04:30:05PM -0800, Cy Schubert - CITS Open Systems Group wrote: > > In message <03f401c1b4bb$7f97bfa0$34f820c0@ix1x1000>, "Michael Meltzer" > > writes: > > > I try it out tonight, head good things about it already, ThankYou. > > > > > > For what is worth, it seems the problem he is really a > > > routing table issue, it seem that on FreeBSD-stable (without the code) if > > > you where trying to ping 127.0.0.2 (which is not defined) the message goes > > > out the default route, which is a bad thing :-) but by adding "route > > > add -net 127.0.0.0 127.0.0.1 255.0.0.0" which cleaned > > > this up nicely and BTW is how most interfaces handle unknow local networks > > > hosts > > > :-) I am sure that thier is a problem doing this (never seen local host > > > route the address 127.* space, :-) but ..... > > > > With UNIX there are a dozen ways to solve any problem. Here is > > solution #2. > > > > /sbin/route add -net 127.0.0.0 -netmask 255.0.0.0 -iface lo0 -blackhole > > > Perhaps you don't realize that this fixes only the half of the > problem. The other half is the source address in -net 127: > > ping -S 127.1 1.2.3.4 > telnet -s 127.1 1.2.3.4 > > The routing doesn't solve this, and firewall is optional. > > > Cheers, > -- > Ruslan Ermilov Sysadmin and DBA, > ru@sunbay.com Sunbay Software AG, > ru@FreeBSD.org FreeBSD committer, > +380.652.512.251 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?007701c1b5de$feb05260$0b01a8c0>