ttl-exceeded sourced by arrival interface ?
Julien Lesaint
julien+fbnet at titoon.net
Mon Jan 17 06:22:48 PST 2005
On Sat, Jan 15, 2005 at 09:46:54PM -0500, Chuck Swiger wrote:
> Julien Lesaint wrote:
> >Quick reminder: in the case the route to the packet's source is not the
> >interface this packet arrived on, do we have a way to source ICMP errors
> >(ttl-exceeded) with the original interface's IP address ?
>
> Yes. Use IPFW's fwd mechanism, or even set a host route for the source IP
> address pointing to whichever interface you please.
I don't understand how this forward feature could help... Anyway I'm not
using IPFW. Adding a route for each source IP is definitely not feasible.
Maybe I wasn't clear enough so I repeat: I just want the FreeBSD box to
send ICMP errors with the IP address of the interface the packet which
generated this error, arrived on. Just like real routers... The "problem"
only occurs in an assymetric routing context, i.e. the router which is
generating the ICMP packet will not reply via the interface the original
packet arrived on.
> That's what the routing table is supposed to do, yes.
This is the normal behavior in all situations but this one, yes...
--
Julien Lesaint.
More information about the freebsd-net
mailing list