From owner-freebsd-net@FreeBSD.ORG Fri May 30 08:44:07 2008 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id D3A52106568F for ; Fri, 30 May 2008 08:44:07 +0000 (UTC) (envelope-from rajkumars@gmail.com) Received: from yw-out-2324.google.com (yw-out-2324.google.com [74.125.46.28]) by mx1.freebsd.org (Postfix) with ESMTP id 82F818FC19 for ; Fri, 30 May 2008 08:44:07 +0000 (UTC) (envelope-from rajkumars@gmail.com) Received: by yw-out-2324.google.com with SMTP id 9so2262810ywe.13 for ; Fri, 30 May 2008 01:44:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=FtO/EhyVGijgRzUJT2ilWnpoNAcQN9pstCZSIPNyJ3E=; b=Aov2ADVeDt/ElI4tW+ju3IC/KuOW8dwvC3AxAuztsQvZn/MXwKxH0hXY4h7i/v29k3zIuepZgbqPwl4r6zftotBDn5Qw41/M2P3FSPBmHYW5Z99qYz4TsFoh7uRIADNnd2KpDe7NCNXQSrc7IbRNlp5ZQAz/n9cRuaRnCdWpHiA= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=R/AXul9vG80aQ528ity8UaBvO4ApzWwlyu2ZZlvlt04gm+Sp+PJkuYyqQZ4D/xnpBEqBZyAihv67ClnmiNxPUdfPfv6nfA9p7XDvv61H+ni6S+t2eZEIewCyp2ZYVNr0UxAGN0IKckRQsfwUgzfNPPeftA0BUA5ARSyVxfS/wcw= Received: by 10.150.73.41 with SMTP id v41mr5791811yba.188.1212135495040; Fri, 30 May 2008 01:18:15 -0700 (PDT) Received: by 10.150.190.8 with HTTP; Fri, 30 May 2008 01:18:15 -0700 (PDT) Message-ID: <64de5c8b0805300118v3874ec3bx2b2978a80bae08b8@mail.gmail.com> Date: Fri, 30 May 2008 13:48:15 +0530 From: "Rajkumar S" To: freebsd-net@freebsd.org In-Reply-To: <483763B5.4030205@elischer.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <483763B5.4030205@elischer.org> Subject: Re: anyone tried the Multi routing table code yet? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 30 May 2008 08:44:07 -0000 On Sat, May 24, 2008 at 6:09 AM, Julian Elischer wrote: > subject says it all really.. I am using pf and rtable to setfib and get an pfctl: DIOCADDRULE: Device busy when trying to load "pass in quick on fxp0 from any to any keep state rtable 1" I can successfully load "pass in quick on fxp0 all flags S/SA keep state rtable 0" I am testing on FreeBSD CURRENT. My routing tables are: [root@daemon /etc]# setfib -0 netstat -nrf inet Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 192.168.3.100 UGS 0 2025 fxp0 127.0.0.1 127.0.0.1 UH 0 0 lo0 192.168.3.0/24 link#1 UC 0 0 fxp0 192.168.3.54 00:40:f4:b7:d7:ee UHLW 1 40 fxp0 1179 192.168.3.100 00:80:48:38:1a:df UHLW 2 149 fxp0 1173 192.168.4.0/24 link#1 UC 0 0 fxp0 192.168.4.4 00:80:48:1f:48:26 UHLW 1 141 fxp0 1120 192.168.5.0/24 link#3 UC 0 0 rue0 [root@daemon /etc]# setfib -1 netstat -nrf inet Routing tables Internet: Destination Gateway Flags Refs Use Netif Expire default 192.168.5.4 UGS 0 13 rue0 127.0.0.1 127.0.0.1 UH 0 0 lo0 192.168.3.0/24 link#1 UC 0 0 fxp0 192.168.3.54 00:40:f4:b7:d7:ee UHLW 1 0 fxp0 1176 192.168.3.100 00:80:48:38:1a:df UHLW 1 5 fxp0 1170 192.168.4.0/24 link#1 UC 0 0 fxp0 192.168.4.4 00:80:48:1f:48:26 UHLW 1 0 fxp0 1117 192.168.5.0/24 link#3 UC 0 0 rue0 btw, does the rtable syntax allow to set route for packets generated by the pf host itself (like packets from squid). The catch is that they cannot be matched via a "pass in" rule, they are matched only on a "pass out" rule. Thanks and regards, raj