Changes to route(8) or routing between r325235 and r326782?
Thomas Steen Rasmussen
thomas at gibfest.dk
Tue Dec 12 02:32:06 UTC 2017
Hello list :)
"Something" which changes how routing works has landed in 11-STABLE
between r325235 and r326782.
Until now I have had a script which deletes routing table entries which
point to lo0, in order to keep traffic from "shortcutting" over lo0, to
make it possible to use pf to filter traffic between jails. This script
has worked for years, but has now stopped working after upgrading from
r325235 to r326782. Can someone enlighten me as to what changed, and why?
Background/example: I add 185.96.180.10/32 as an alias on an interface,
lagg0.1171. This creates two routing table entries:
185.96.180.10 link#11 UHS lo0
185.96.180.10/32 link#11 U lagg0.1171
If I leave this as-is the traffic from other jails use lo0 to reach
185.96.180.10 meaning they bypass pf entirely. To avoid this I simply
delete the route on lo0, which makes stuff behave as I would expect -
traffic to 185.96.180.10 goes via lagg0.1171 meaning I can filter in pf
as needed.
After upgrading to r326782 I get the following error when trying to
delete the lo0 entry (I have an rc.d script to do it):
$ sudo route delete 185.96.180.10
route: writing to routing socket: Address already in use
delete host 185.96.180.10 fib 0: gateway uses the same route
$
What gives? What do I do now? :)
Thanks!
Best regards
Thomas Steen Rasmussen
More information about the freebsd-net
mailing list