Date: Wed, 7 Jan 2004 23:23:12 +1100 (EST) From: Ian Smith <smithi@nimnet.asn.au> To: Maxim Konovalov <maxim@macomnet.ru> Cc: net@freebsd.org Subject: Re: 5.1r Bridge with one ip - no access from non-ip side - WORKS Message-ID: <Pine.BSF.3.96.1040107220202.4416B-100000@gaia.nimnet.asn.au> In-Reply-To: <20040106110122.T65251@news1.macomnet.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 6 Jan 2004, Maxim Konovalov wrote: > On Tue, 6 Jan 2004, 06:33+0100, Bjorn Eikeland wrote: > > > P? Tue, 6 Jan 2004 07:41:26 +0300 (MSK), skrev Maxim Konovalov > > <maxim@macomnet.ru>: > > > > > Try sysctl net.inet.ip.check_interface=0. > > > > > > > Well that did the trick! > > Thank you very much! > > We really have to document that knob somewhere in bridge.4. I thought this might affect my problem with a very similar setup that I reported in some detail the other day, re the bridge not seeing (or not taking notice of, at least) rwho UDP 113 packets to the subnet broadcast address on the non-IP interface from hosts 'outside', but on checking, that knob was already set to 0 by default (4.8-RELEASE + BRIDGE kernel). Setting this to 1 did indeed kill connectivity (ping) on the unnumbered interface. I wonder why your system would default to 1 on that knob? In chasing this I've tried fiddling with several knobs, most recently net.link.ether.inet.proxyall=1 (guesswork!), and have tried creating an extra arp entry for the MAC address of the non-IP outside interface (pub and pub only) but these always get stored with the MAC of the inside interface, ie that with the IP assigned, despite specifying the other. I'm not sure if our problem is to do with arp at all, or with processing broadcast packets received on the non-IP interface, or what. I can live with rwho/ruptime only half-working on this box (ie for 'inside' boxes), but I do wonder whether protocols other than rwho using UDP broadcasts (such as ..?) might have the same problem? Anyway, the consequence is that the bridge box is the only one that won't report on rwho/ruptime for the (single) box on the unnumbered (outside) interface. Guess I could bring it up to -STABLE if anyone knows of bridge changes? Chees, Ian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.1040107220202.4416B-100000>