From nobody Wed Jun 14 09:46:53 2023 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Qh0vC1lS5z4dJPS for ; Wed, 14 Jun 2023 09:47:03 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Received: from mail-4323.proton.ch (mail-4323.proton.ch [185.70.43.23]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Qh0vB5K9Sz401T for ; Wed, 14 Jun 2023 09:47:02 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Authentication-Results: mx1.freebsd.org; none Date: Wed, 14 Jun 2023 09:46:53 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu; s=protonmail3; t=1686736020; x=1686995220; bh=bO8+wasfnetF4XL0lR0Ywvl5jcmCIWT6hTDJja+C6iU=; h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector; b=bNPSYdq9qQxrY10hWKLukccNW3GZ/SfJzkGJFvHNB/3e6Gp+Sm5r56WhS8sl1Wsm+ eTsoVtLjC45eCIfiDmaPh6dIqGfWduK+OtRCekB6aG27elZv0d4/zg4026zrxdVwFM a0e2mrzh+vNxRW05SgNZN14kFNbBaWl2y3wC53gaK1PQ5qWqLYhz0GIDloowQhtDs9 WRn4+QzuKnS1V3IYt50cxYB2kIupzjwoe0YowRYNkW+nHna3aUDXXif9lr5smVWpa+ 8mr7vGTtnK2dRM1KSJqLKGUH49sTl6n26Yy/fX/tThekulrzB+nIN3C+QQODs/zBHM v7IAFd+e597lA== To: Alexander Chernikov From: Benoit Chesneau Cc: "freebsd-net@FreeBSD.org" Subject: Re: can't add a /24 blackhole route with a /32 loopback Message-ID: In-Reply-To: <5747CC08-6903-4E2F-B0A5-D0CAB08F8165@FreeBSD.org> References: <9Jh8lSg93tjEc0-UEU3MQkGuQc7R9Aht0NBt4kEr6-wtgMdf673nws_jGaHelYwz0U78ik2BM4WLUca2JZAjrX-WSbP5QS4rsvoBHZo_JZo=@enki-multimedia.eu> <4DF565CC-D8AE-4F35-A7CF-7ED5AAD27B49@FreeBSD.org> <5747CC08-6903-4E2F-B0A5-D0CAB08F8165@FreeBSD.org> Feedback-ID: 9066678:user:proton List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Rspamd-Queue-Id: 4Qh0vB5K9Sz401T X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:62371, ipnet:185.70.43.0/24, country:CH] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-ThisMailContainsUnwantedMimeParts: N Here is the ifconfig for loopbacks: ``` ifconfig lo1 lo1: flags=3D8049 metric 0 mtu 16384 =09options=3D680003 =09inet6 fe80::1%lo1 prefixlen 64 scopeid 0x9 =09inet6 XXXX:XXXX:1:1::1 prefixlen 128 =09inet 1.1.1.1 netmask 0xffffffff =09groups: lo =09nd6 options=3D21 root@core0:~ # ifconfig lo0 lo0: flags=3D8049 metric 0 mtu 16384 =09options=3D680003 =09inet6 ::1 prefixlen 128 =09inet6 fe80::1%lo0 prefixlen 64 scopeid 0x3 =09groups: lo =09nd6 options=3D21 ``` Hope this helps, Beno=C3=AEt ------- Original Message ------- On Wednesday, June 14th, 2023 at 11:42, Alexander Chernikov wrote: > > On 14 Jun 2023, at 10:06, Benoit Chesneau benoitc@enki-multimedia.eu wr= ote: > >=20 > > I forgot oto add the error message , sorry. > >=20 > > When I try to set the theblackhole flag I get the following error: > >=20 > > `route: writing to routing socket: Operation not supported change net 1= .1.1.0 fib 0: Operation not supported` >=20 > Interesting. Could you also share full ifconfig output or at least ifconf= ig for each of the loopbacks? > If the output contains something you=E2=80=99re not comfortable sharing i= n the ML, you could consider sending it directly to my email. >=20 > > ------- Original Message ------- > > On Wednesday, June 14th, 2023 at 10:38, Benoit Chesneau benoitc@enki-mu= ltimedia.eu wrote: > >=20 > > > Hi, > > >=20 > > > Thanks for your answer. I'm using Freebsd 13.2 latest version: > > >=20 > > > $ uname -srm > > > FreeBSD 13.2-RELEASE amd64 > > >=20 > > > I edited the filtred result of the table since it has a full view: > > >=20 > > > netstat -4rnW |grep -e "1.1.1" > > > 1.1.1.0/24 127.0.0.1 USB 14 16384 lo0 > > > 1.1.1.1 link#9 UHS 26 16384 lo1 > > > 1.1.1.2 10.3.1.1 UGH1 15 9000 vlan2212 > > > 1.1.1.2 10.3.1.1 UGHS 16 1500 vlan2212 > > > 1.1.1.2 10.3.1.1 UGHS 25 9000 vlan2212 > > >=20 > > > Also I forgot to mention that the ethernet driver is MLX4EN(4): > > >=20 > > > mlx4_core0@pci0:8:0:0: class=3D0x028000 rev=3D0x00 hdr=3D0x00 vendor= =3D0x15b3 device=3D0x1007 subvendor=3D0x103c subdevice=3D0x22f3 > > > vendor =3D 'Mellanox Technologies' > > > device =3D 'MT27520 Family [ConnectX-3 Pro]' > > > class =3D network > > > Corrected =3D Advisory Non-Fatal Error > > >=20 > > > Hope it helps, > > >=20 > > > Beno=C3=AEt > > > ------- Original Message ------- > > > On Wednesday, June 14th, 2023 at 10:29, Alexander Chernikov melifaro@= FreeBSD.org wrote: > > >=20 > > > > > On 14 Jun 2023, at 07:05, Benoit Chesneau benoitc@enki-multimedia= .eu wrote: > > > > >=20 > > > > > Hi, > > > > >=20 > > > > > When I setup a loopback to a /32 , I can add a /24 as a blackhole= route anymore. I can only create a /24 attached to this looopback. Ie. > > > >=20 > > > > Could you add a bit more context? > > > > What is the FreeBSD version (uname -srm)? > > > > What does 'route add 1.1.1.0/24 -blackhole=E2=80=99 show? > > > > Could you also share netstat -4rnW and ifconfig output (maybe priva= tely)? > > > >=20 > > > > > when `lo1` is set to `1.1.1.1/32` I cant create a blackhole route= to `1.1.1.0/24` using the command : `route add 1.1.1.0/24 -blackhole` . Is= there any reason for it? The idea is to be able to advertise the prefix `1= .1.1.0/24` via BGP (bird) and use 1.1.1.1/32` as a loopback distributed to = other nodes using OSPF. I can probably make the loopback a /24 used by bird= but what would be the other way to do it? > > > > >=20 > > > > > Beno=C3=AEt