From nobody Wed Jun 14 10:26:20 2023 X-Original-To: freebsd-net@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Qh1mr4Qjnz4ddFD for ; Wed, 14 Jun 2023 10:26:36 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Received: from mail-40136.proton.ch (mail-40136.proton.ch [185.70.40.136]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "protonmail.com", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Qh1mr3RcNz4DqY for ; Wed, 14 Jun 2023 10:26:36 +0000 (UTC) (envelope-from benoitc@enki-multimedia.eu) Authentication-Results: mx1.freebsd.org; none Date: Wed, 14 Jun 2023 10:26:20 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=enki-multimedia.eu; s=protonmail3; t=1686738393; x=1686997593; bh=gJwJ3siFZ+EqOpP6Ik7NekYWwHkVUZpcil9dJAWYZ4U=; h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector; b=OxXkD6wONIWvuToR5bXlU3k2AGJ07lRpOWpm8mr+8COUPqtEHkJVrPYnYEGsOtDOy DBKHHYVsRy6OdlhnJ5T30R7r5Jqef5wswF5hQTAuLCHhdfLmYMc/Emz/sI2ilHixUf y6ipQjiQJ75xziwMUSW3UlgHpdF0hRrVMq5R2lb6WM4xm1WWkjsaaWfN2z0KmUAC4G VNLVnYRl9jrqXuumx3cMweu5oEi5S7D76XlbUhdliDaKii9WIiJTVT/aN+0bAQOXig Vk/PbGe16jHAUJLo+ZB04JsX3AIwzjFhBfFlUUsd9Dm3YA21LaI/vao2PcNvHSnVjc GH0OV6HLr5syw== To: Benoit Chesneau From: Benoit Chesneau Cc: Alexander Chernikov , "freebsd-net@FreeBSD.org" Subject: Re: can't add a /24 blackhole route with a /32 loopback Message-ID: In-Reply-To: References: <9Jh8lSg93tjEc0-UEU3MQkGuQc7R9Aht0NBt4kEr6-wtgMdf673nws_jGaHelYwz0U78ik2BM4WLUca2JZAjrX-WSbP5QS4rsvoBHZo_JZo=@enki-multimedia.eu> <4DF565CC-D8AE-4F35-A7CF-7ED5AAD27B49@FreeBSD.org> <5747CC08-6903-4E2F-B0A5-D0CAB08F8165@FreeBSD.org> <0C23EFD2-1535-46B0-9E69-93D58B376CC3@FreeBSD.org> Feedback-ID: 9066678:user:proton List-Id: Networking and TCP/IP with FreeBSD List-Archive: https://lists.freebsd.org/archives/freebsd-net List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-net@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Rspamd-Queue-Id: 4Qh1mr3RcNz4DqY X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-ThisMailContainsUnwantedMimeParts: N I found an interresting log in dmesg (see below). Not sure how it can happe= ns. Could it be related to the usage of bird? The log: ``` [rtsock] fill_blackholeinfo: PID 72835: Unable to find ifa for blackhole/re= ject nhop [rtsock] fill_blackholeinfo: PID 72837: Unable to find ifa for blackhole/re= ject nhop [rtsock] fill_blackholeinfo: PID 72838: Unable to find ifa for blackhole/re= ject nhop [rtsock] fill_blackholeinfo: PID 72847: Unable to find ifa for blackhole/re= ject nhop [rtsock] fill_blackholeinfo: PID 72854: Unable to find ifa for blackhole/re= ject nhop [rtsock] fill_blackholeinfo: PID 72860: Unable to find ifa for blackhole/re= ject nhop ``` ------- Original Message ------- On Wednesday, June 14th, 2023 at 12:18, Benoit Chesneau wrote: >=20 > ------- Original Message ------- > On Wednesday, June 14th, 2023 at 11:56, Alexander Chernikov melifaro@Free= BSD.org wrote: >=20 > > Could you try: > > 1) removing the 1.1.1.0/24 route > > 2) removing the 1.1.1.1/32 from the lo1 > > 3) provide the output for `route -n get 1.1.1.0/24` > > 4) provide the output for `route -n get 1.1.1.1/32` > > 5) assign 1.1.1.1/32 to lo1 > > 6) provide the output for `route -n get 1.1.1.0/24` > > 7) provide the output for `route -n get 1.1.1.1/32` > > 8) provide the output for `route add -net 1.1.1.0/24 -blackhole` >=20 >=20 > Find the result below. Such thing worked on another machine, I am not sur= e why. No obvious logs. >=20 > ``` > # route -n get 1.1.1.0/24 > route to: 1.1.1.0 > destination: 1.1.1.0 > mask: 255.255.255.0 > fib: 0 > interface: lo1 > flags: >=20 > recvpipe sendpipe ssthresh rtt,msec mtu weight expire > 0 0 0 0 16384 1 0 > # route -n get 1.1.1.1/32 > route to: 1.1.1.1 > destination: 1.1.1.1 > gateway: 10.3.1.2 > fib: 0 > interface: vlan212 > flags: >=20 > recvpipe sendpipe ssthresh rtt,msec mtu weight expire > 0 0 0 0 9000 1 0 > # route delete 1.1.1.0/24 > delete net 1.1.1.0 > # route -n get 1.1.1.1/32 > route: route has not been found > # ifconfig lo1 inet 1.1.1.1/32 > # route -n get 1.1.1.1/32 > route to: 1.1.1.1 > destination: 1.1.1.1 > fib: 0 > interface: lo1 > flags: >=20 > recvpipe sendpipe ssthresh rtt,msec mtu weight expire > 0 0 0 0 16384 1 0 > # route add -net 1.1.1.0/24 -blackhole > route: writing to routing socket: Operation not supported > add net 1.1.1.0 fib 0: Operation not supported > # route -n get 1.1.1.0/24 > route: route has not been found > ```