Currently source address selection for raw packets under jails uses prison_get_ip4 in the INADDR_ANY case.
This can cause an invalid source address to be used, including using addresses which are unusable e.g. down interfaces un-routable addresses etc. I suspect this is a hang over from when jails where essentially single IP. The attached patch switches to use full resolution for rawpackets via in_pcbladdr, which fixes this problem in all of our testing.
Is this the correct path to take? Regards Steve ================================================This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it.
In the event of misdirection, illegible or incomplete transmission please telephone +44 845 868 1337 or return the E.mail to postmas...@multiplay.co.uk.
jail-raw-srcaddr.patch
Description: Binary data
_______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
