Avoid using RFC3927 outside of the link
Alarig Le Lay
alarig at swordarmor.fr
Mon Dec 19 21:01:54 UTC 2016
On Tue Dec 20 02:34:29 2016, Eugene Grosbein wrote:
> Well, you can always use brute force instead:
>
> ipfw nat 169 config reset ip 89.234.186.1 && \
> ipfw add 60 nat 169 ip from 169.254.0.0/16 to any out xmit igb0
>
> That's ugly but works.
I will work just by side effect: by doing this, I will send BGP packets
from 89.234.186.1, which is an IP than the peer learned by BGP. This will
create a recursive loop, and the session will be shut. So, no more
traffic will transit through this interface, and this IP will not be
displayed anymore :p
--
alarig
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-net/attachments/20161219/1dfdb3ea/attachment.sig>
More information about the freebsd-net
mailing list