From owner-freebsd-stable Thu Feb 14 21:11:15 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mta8.srv.hcvlny.cv.net (mta8.srv.hcvlny.cv.net [167.206.5.23]) by hub.freebsd.org (Postfix) with ESMTP id 8295E37B419; Thu, 14 Feb 2002 21:09:43 -0800 (PST) Received: from mjm2 (ool-182d19ab.dyn.optonline.net [24.45.25.171]) by mta8.srv.hcvlny.cv.net (iPlanet Messaging Server 5.0 Patch 2 (built Dec 14 2000)) with SMTP id <0GRK002IA6B6JP@mta8.srv.hcvlny.cv.net>; Fri, 15 Feb 2002 00:09:08 -0500 (EST) Date: Fri, 15 Feb 2002 00:09:47 -0500 From: Michael Meltzer Subject: Re: 127/8 in ip_output.c To: Ruslan Ermilov , Cy Schubert - CITS Open Systems Group Cc: Attila Nagy , stable@FreeBSD.ORG Message-id: <007701c1b5de$feb05260$0b01a8c0@mjm2> MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Mailer: Microsoft Outlook Express 6.00.2600.0000 Content-type: text/plain; charset=iso-8859-1 Content-transfer-encoding: 7BIT X-Priority: 3 X-MSMail-priority: Normal References: <03f401c1b4bb$7f97bfa0$34f820c0@ix1x1000> <200202140030.g1E0UeV97449@cwsys.cwsent.com> <20020214100923.A21603@sunbay.com> Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Your right, but I would never thing of seting the source address to 127*, what people will do :-) Thank You, I tried the patch tonight(sorry for the delay), worked fine, no issues with the rdr rule on 127*, hope it is MFC soon, again Thank You MJM ----- Original Message ----- From: "Ruslan Ermilov" To: "Cy Schubert - CITS Open Systems Group" Cc: "Michael Meltzer" ; "Attila Nagy" ; Sent: Thursday, February 14, 2002 3:09 AM Subject: Re: 127/8 in ip_output.c > On Wed, Feb 13, 2002 at 04:30:05PM -0800, Cy Schubert - CITS Open Systems Group wrote: > > In message <03f401c1b4bb$7f97bfa0$34f820c0@ix1x1000>, "Michael Meltzer" > > writes: > > > I try it out tonight, head good things about it already, ThankYou. > > > > > > For what is worth, it seems the problem he is really a > > > routing table issue, it seem that on FreeBSD-stable (without the code) if > > > you where trying to ping 127.0.0.2 (which is not defined) the message goes > > > out the default route, which is a bad thing :-) but by adding "route > > > add -net 127.0.0.0 127.0.0.1 255.0.0.0" which cleaned > > > this up nicely and BTW is how most interfaces handle unknow local networks > > > hosts > > > :-) I am sure that thier is a problem doing this (never seen local host > > > route the address 127.* space, :-) but ..... > > > > With UNIX there are a dozen ways to solve any problem. Here is > > solution #2. > > > > /sbin/route add -net 127.0.0.0 -netmask 255.0.0.0 -iface lo0 -blackhole > > > Perhaps you don't realize that this fixes only the half of the > problem. The other half is the source address in -net 127: > > ping -S 127.1 1.2.3.4 > telnet -s 127.1 1.2.3.4 > > The routing doesn't solve this, and firewall is optional. > > > Cheers, > -- > Ruslan Ermilov Sysadmin and DBA, > ru@sunbay.com Sunbay Software AG, > ru@FreeBSD.org FreeBSD committer, > +380.652.512.251 Simferopol, Ukraine > > http://www.FreeBSD.org The Power To Serve > http://www.oracle.com Enabling The Information Age > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message