On Mon, Sep 24, 2001 at 12:17:14AM -0400, Joe Abley wrote:
> On Mon, Sep 24, 2001 at 04:06:45PM +1200, Juha Saarinen wrote:
> > Misunderstood what Lamont was trying to show earlier... but he's right:
> > FreeBSD sends 127/8 out on the 'Net:
>
> I don't think FreeBSD is non-compliant for sending packets with
> destination 127/8 out onto the net, but I guess it could make it
> harder for users to send packets with moronic destinations out.
>
> --- rc.network.orig Mon Sep 24 00:08:17 2001
> +++ rc.network Mon Sep 24 00:14:05 2001
> @@ -346,6 +346,13 @@
> done
> fi
>
> + # Add a blackhole static route for 127/8, since packets with
> + # that destination should be caged up and starved
> + lo0_inet=$(ifconfig lo0 | awk '($1 == "inet") { print $2; exit; }')
> + if [ -n "${lo0_inet}" ]; then
> + route add 127.0.0.0 -netmask 255.0.0.0 ${lo0_inet} -blackhole
> + fi
> +
> echo -n 'Additional routing options:'
> case ${tcp_extensions} in
> [Yy][Ee][Ss] | '')
Why -blackhole?
Those packets are _supposed_ to get back to this host. That's
what loopback is for.
I've been using this in /etc/rc.local for a long time:
echo -n ', fixing localhost net route'
route add -net 127. -netmask 255.0.0.0 -iface lo0
Can't remember when I started. Basically as soon as I
discovered that the wrong thing was happening.
--
Andrew
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-stable" in the body of the message
