On Mon, 13 Mar 2023, Pawel Biernacki wrote:
The branch main has been updated by kaktus:
URL:
https://cgit.FreeBSD.org/src/commit/?id=3eaffc626589eb2fc20a3c9c87eb8ab0ee89e783
commit 3eaffc626589eb2fc20a3c9c87eb8ab0ee89e783
Author: Pawel Biernacki <kak...@freebsd.org>
AuthorDate: 2023-03-13 16:36:11 +0000
Commit: Pawel Biernacki <kak...@freebsd.org>
CommitDate: 2023-03-13 16:46:21 +0000
netinet6: allow disabling excess log messages
RFC 4443 specifies cases where certain packets, like those originating from
local-scope addresses destined outside of the scope shouldn't be forwarded.
The current practice is to drop them, send ICMPv6 message where appropriate,
and log the message:
cannot forward src fe80:10::426:82ff:fe36:1d8, dst 2001:db8:db8::10, nxt
58, rcvif vlan5, outif vlan2
At times the volume of such messages cat get very high. Let's allow local
admins to disable such messages on per vnet basis, keeping the current
default (log).
Thanks for the change. I find the commit message a "bit misleading" ;-)
If that log amount gets high, the local admin should take care of some
other hosts ... really ... to reduce the logging and not disable the
messages.
Reported by: zarych...@plan-b.pwste.edu.pl
Reviewed by: zlei (previous version), pauamma (docs)
Differential Revision: https://reviews.freebsd.org/D38644
--
Bjoern A. Zeeb r15:7
