Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 2 Feb 1999 15:07:17 -0800 (PST)
From:      Mike Holling <myke@ees.com>
To:        freebsd-net@FreeBSD.ORG
Subject:   Problems with routes learned by ICMP redirect?
Message-ID:  <Pine.BSF.4.03.9902021441100.23855-100000@phluffy.fks.bt>
next in thread | raw e-mail | index | archive | help 
I'm working on an ISP that recently had a number of IP networks revoked
from a former provider.  During the conversion, I discovered that the
FreeBSD boxes on the network are getting routes I don't want them to, and
even worse, they aren't set to time out.  Here's an example:


Internet:
Destination    Gateway          Flags     Refs     Use     Netif   Expire
default        205.201.1.1      UGSc       84     3555      fxp0
127.0.0.1      127.0.0.1        UH          0        0       lo0
205.201.1      link#1           UC          0        0
205.201.1.1    0:e0:fe:94:7c:8  UHLW       66        3      fxp0   386
205.201.1.2    0:20:af:38:7:b8  UHLW        1      272      fxp0   461

(...)

205.201.39.2   205.201.1.120    UGHD        0        6      fxp0
205.201.39.6   205.201.1.117    UGHD        0       12      fxp0
205.201.39.9   205.201.1.105    UGHD        0       20      fxp0
205.201.39.59  205.201.1.118    UGHD        0        0      fxp0


The machine has a single ethernet card with a single IP address in the
205.201.1.0/24 network.  The dialup boxes (.105, .117, .118, .120 among
others) are also in this network.  The 205.201.39.0/24 network is used for
a special customer that gets static IP addresses for all their dialup
users (in fact, this happens to be the project that produced the "Internet
causes loss of social contact and depression" study that stirred up some
controversy last summer).

These are regular dialup users that can come in on any of the dialup boxes
with their static IP.  There are no routing daemons running, so I'm
assuming these routes are learned via ICMP redirects (not knowing how to
find out how a route was learned).  I don't want the freebsd box to have
any routes for these IPs, I want it to ignore any ICMP redirects and
continue sending all traffic to its default gateway (the dialups and the
router use OSPF, I don't really want to have to have all the freebsd
systems running OSPF as well).  Also, why do the entries never expire?  I
changed the IP addresses of all the dialup units yesterday, and some of
the freebsd machines still have stale routes for the dialup network
pointing to old dialup box IP addresses.

- Mike



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.03.9902021441100.23855-100000>