sysctl -w net.link.ether.inet.proxyall=1 ?
Ruslan Ermilov
ru at freebsd.org
Fri Mar 19 00:45:54 PST 2004
On Thu, Mar 18, 2004 at 05:12:03PM +0100, Juan Rodriguez Hervella wrote:
> What this is used for ?
>
This is an extension to the ARP proxying feature, allowing you to easily
set it up. Normally, to do an ARP proxying, you would need to set up all
individual ARP proxy entries (see the arp(8) manpage for details).
By turning this sysctl on, you don't need to set up each individual proxy
entry. Instead, the host will act as if proxy ARP entry was already set,
which some precautions made to ensure that the host acting as a proxy can
can really proxy it via some other network interface:
- ARP request arrives via Ethernet interface if0,
- ARP code determines that the target address is not one of its own,
- ARP code looks up a proxy ARP entry, and fails,
- arp_proxyall is enabled (otherwise, the processing stops here),
- ARP code looks for a route to the destination (from the ARP request),
- if interface the request came in from is the same as the route
points to, nothing is sent back,
- ARP reply is constructed and sent back.
Example.
- A host is assigned an IP address 10.0.0.1 (with the standard class B
netmask) to its Ethernet interface fxp0.
- There is a ppp(8) session established over the tun0 interface with the
remote end assigned the 10.0.0.2 IP address. (There's a host route
pointing to 10.0.0.2 through tun0.)
- The host is configured to do arp_proxyall.
- An ARP request for 10.0.0.2 arrives through fxp0.
- The host sends ARP reply back with its own MAC address of fxp0,
allowing the LAN machines to talk to the PPP client.
Cheers,
--
Ruslan Ermilov
FreeBSD committer
ru at FreeBSD.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-net/attachments/20040319/646428cf/attachment.bin
More information about the freebsd-net
mailing list