Age | Commit message (Collapse) | Author |
|
hook up looking up routes in alternate tables to the packet forwarding path.
alternate routing tables are mintained with route(8), table selection via pf.
mostly hacked on a train ride with ryan some time ago, ok mcbride claudio
|
|
deraadt ok. manpage nit by jmc.
|
|
|
|
(to sync up with more recent IPv6 spec)
ok from: deraadt mcbride
|
|
|
|
|
|
Before a normal user running ifconfig(8) could trigger up to three
address hook calls per interface.
OK mcbride@, henning@
|
|
virtual MAC address is set. Among other things, this makes route6d work
correctly on systems with carp interfaces.
In order to ensure backwards compatibility, we do not include IPv6
link-local addresses in generating the HMAC, but we accept HMACs with AND
without the link-local addresses. They will be added to the HMAC in a future
release.
In short: this change should only affect backwards compatibility for
IPv6 users who are manually adding link-local addresses on carp interfaces.
testing mtu@ todd@
ok mpf@ henning@ deraadt@
|
|
ok mpf@ henning@
|
|
no functional change.
|
|
To minimise path disruptions, this implements recommendations made in RFC2992 -
the hash-threshold mechanism to select paths based on source/destination IP
address pairs, and inserts multipath routes in the middle of the route table.
To enable multipath distribution, use:
sysctl net.inet.ip.multipath=1
and/or:
sysctl net.inet6.ip6.multipath=1
testing norby@
ok claudio@ henning@ hshoexer@
|
|
parameter so they can work on alternate tables. table 0 hardcoded for
many callers yet, that will be adapted step by step.
input + ok claudio norby hshoexer
|
|
|
|
|
|
|
|
|
|
and additionaly make the code part of the MROUTING option. Put it in deraadt@
|
|
|
|
"why are you not committing? into the tree, into the tree!"
and ok tedu@
|
|
cases harmless it is used by the IPv6 code. The result is that bgpd is unable
to assigning link local addresses to the correct interface. OK henning@
Fix for PR 5063.
|
|
ok miod@ hshoexer@
|
|
directly. rather provide a rt_lookup function for regular lookups,
and a rt_gettable for those that need access to the head for some reason.
the latter cases should be revisted later probably so that nothing outside
the routing core code accesses the heads at all...
tested claudio jolan me, ok claudio markus
|
|
|
|
the remainder of the network stack from splimp to splnet.
ok miod@
|
|
|
|
|
|
|
|
in sys/cdefs.h) instead of _FOO_SOURCE. Also fix several namespace
pollution issues, including the byte order defines. OK deraadt@
|
|
|
|
so we must start to use u_int; ok cloder
|
|
router so back out the routing stuff to pre-eurobsdcon where my machine
doesn't crash immediately.
i am happy to test diffs and report success/failures but i am not happy
to have instantaneous crashes when i reboot with a new kernel that was
compiled from pristine sources.
if you are going to be an elitist asshole then you could at least make
sure your code works.
ok and "be crass towards them" deraadt@
|
|
but go through a provided wrapper.
also provide rt_lookup() instead of doing the lookup manually in many places.
ryan ok
|
|
ok henning@
|
|
m0. But m0 may be freed later, so trying to use sip6 at the end of this
function is wrong. My guess is that we want to reference the data area
of m (the mbuf about to be send) instead at this point.
Fix a panic on Xen (where a data area of a mbuf may be unmapped when the
mbuf is freed), and probably potential data/pool corruption in other cases.
From bouyer NetBSD
ok deraadt@
|
|
not to mention reentrancy concerns.
From christos NetBSD
ok deraadt@
|
|
ok deraadt@
|
|
(unlikely to be used with other scopes for now, but we should be
correct anyway)
From drochner NetBSD
ok deraadt@
|
|
if at all, it works with site-local addresses whose fate is uncertain
to say the least
From drochner NetBSD
ok deraadt@
|
|
Don't count link local scope multicast as not forwardable.
This stops ips_cantforward growing on carp(4) networks.
tested and ok mcbride@, ok markus@.
|
|
|
|
Fixes PR 4211.
OK mcbride@
|
|
Fixes PR 3939.
From NetBSD
ok itojun@
|
|
|
|
on loopback interfaces, and IPv6 behaves like IPv4 in this regard. only
affects packets on loopback. ok itojun@
|
|
|
|
Advertisements run through the carp interface first.
So we just take the address from ifp0.
While we're there,
also remove carp_macmatch6, which isn't used anymore.
Proposed by mcbride@
ok mcbride@, pascoe@
|
|
|
|
IPV6_{JOIN,LEAVE}_GROUP ioctls; ok itojun@
|
|
|
|
style as vlan(4). carp interfaces no longer require the physical interface
to be on the same subnet as the carp interface, or even that the physical
interface has an adress at all, so CARP can now be used on /30 networks.
ok deraadt@ henning@
|