static routes
Ludovit Koren
lk at tempest.sk
Tue Mar 21 13:47:55 UTC 2006
>>>>> On Tue, 21 Mar 2006 06:12:51 +0100
>>>>> lists at wm-access.no(=?ISO-8859-1?Q?Sten_Daniel_S=F8rsdal?=) said:
>
> This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
> --------------enig31C5AF3351A4904FFAEF208E
> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
> Content-Transfer-Encoding: quoted-printable
>
> Ludovit Koren wrote:
> > Hi,
> >=20
> > I realized on several different versions of FreeBSD including
> > 5.4-STABLE, when using static routes to specific subnets and the WAN
> > link goes down for unpredictable reasons, the server gets ICMP
> > redirect message and rearranges routes to use default router. Then all
> > the traffic is routed to the default router even the WAN link is again
> > up. Other unix like system (HP-UX, Linux) do not act the way,
> > i.e. they do not change static routes.
> >=20
>
> Are the routes still there after link goes down and then up?
>
yes
netstat -rn
Routing tables
Internet:
Destination Gateway Flags Refs Use Netif Expire
default 195.28.109.1 UGS 0 760 bge0
127.0.0.1 127.0.0.1 UH 0 11589 lo0
192.168.100 195.28.109.24 UGS 0 8 bge0
192.168.100.1 195.28.109.1 UGHD3 0 2 bge0 3598
195.28.109 link#1 UC 0 0 bge0
195.28.109.1 00:0b:ac:29:1e:ca UHLW 3 0 bge0 324
195.28.109.24 00:0f:34:04:a2:f0 UHLW 2 0 bge0 1162
for each usage the expire counter starts again from 3600.
I must admit, after analyzing the problem again, that the problem
arises only if the net (routing devices) are not configured
consistently, i.e. not all of them can or send ICMP redirect. The
problem was on the net with Cisco router and PIX. It seems, according
to the Cisco declaration, that PIX cannot send ICMP messages through
the same interface and cannot route back via the same interface.
Now, I have no 2 routers or 2 PIX-es at the disposal that's why I
cannot test all possible combinations.
Thanks.
Regards,
lk
More information about the freebsd-net
mailing list