|
Hello,
On Mon, 24 Jul 2000, Shawn Cannon wrote:
> Hi -
>
> I have a red hat 6.2/linux 2.2.14 system with the dummy0 and multiple
> aliased interfaces (i.e. dummy0:1, dummy0:2, etc.) configured to be hidden.
> I ran the "echo 1 > /proc/sys/net/ipv4/conf/all/hidden" and the "echo 1 >
> /proc/sys/net/ipv4/conf/dummyo/hidden" commands and at first this appeared
> to hide the dummy0 interface and all of its aliased interfaces as well.
> However I can now ping the dummy0 interface as well as the aliases from a
> separate client machine and get a response. Doing a "more" on hidden
You can not use the hidden flag to stop ping
> returned a value of one, so this interface should still be hidden I would
> think. Running ifconfig -a shows the interface to be set to NOARP. Any ideas
> why this interface can still respond to ARP requests? Is there a way ro
Any evidence for ARP reply? tcpdump -e output?
You have to check with:
client# arp -d vip ; ping vip
I assume there is no other host on the LAN that can respond.
> re-force the interface into a hidden state? Thanks...
>
> Shawn Cannon
> Sales Engineer
> 100 Apollo Drive
> Chelmsford, MA
> 978-250-3270 x521
>
>
> This email message is for the sole use of the intended recipient(s) and may
> contain confidential and privileged information. Any unauthorized review,
> use, disclosure or distribution is prohibited. If you are not the intended
> recipient, please contact the sender by reply email and destroy all copies
> of the original message.
Regards
--
Julian Anastasov <uli@xxxxxxxxxxxxxxxxxxxxxx>
|
