[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
new install 3.0 building dynamic routes...
Greetings,
I have completed a new install of OBSD 3.0 for I386. It is configured on the network with one ethernet interface. I have not turned on any routing options in /etc/rc.conf or /etc/rc.conf.localhost.
My problem:
It seems that my system is building a routing list including any system that attempts a connection. A simple ping from another system causes a route to be added.
I would assume this is from ipforwarding being enabled yet it is not. I had a similar problem on an AIX 4.3 system awhile back and the result from that was ipforwarding being enable by default in a maintenance release (which it should not have been). Turning it off solved the problem there.
I have attached the output from netstat -r, sysctl net.inet.ip and ps aux.
Any ideas or suggestions?
biermans@ns1 /home/biermans > netstat -r|more
Routing tables
Internet:
Destination Gateway Flags Refs Use Mtu Interface
default 160.37.0.1 UGS 0 2 1500 fxp0
loopback localhost UGRS 0 0 33224 lo0
localhost localhost UH 3 25 33224 lo0
160.37/16 link#1 UC 0 0 1500 fxp0
160.37.0.1 0:4:dc:b0:e6:2 UHL 1 0 1500 fxp0
nevohteeb.methodis 0:0:c0:74:70:74 UHL 1 304 1500 fxp0
160.37.194.153 8:0:20:a5:1:38 UHL 0 2 1500 fxp0
ns1 localhost UGHS 0 5 33224 lo0
medstat.methodisth 0:6:29:dc:46:55 UHL 0 2 1500 fxp0
sp2cw.methodisthea 0:6:29:dc:e:4 UHL 0 403 1500 fxp0
sp265.methodisthea 2:7:1:23:89:68 UHL 1 122 1500 fxp0
160.37.225.93 0:c0:4f:1e:af:a UHL 2 831 1500 fxp0
BASE-ADDRESS.MCAST localhost URS 0 0 33224 lo0
<ip6 info suppressed>
biermans@ns1 /home/biermans > sysctl net.inet.ip
net.inet.ip.forwarding = 0
net.inet.ip.redirect = 0
net.inet.ip.ttl = 64
net.inet.ip.sourceroute = 0
net.inet.ip.directed-broadcast = 0
net.inet.ip.portfirst = 1024
net.inet.ip.portlast = 49151
net.inet.ip.porthifirst = 49152
net.inet.ip.porthilast = 65535
net.inet.ip.maxqueue = 300
net.inet.ip.encdebug = 0
net.inet.ip.ipsec-expire-acquire = 30
net.inet.ip.ipsec-invalid-life = 60
net.inet.ip.ipsec-pfs = 1
net.inet.ip.ipsec-soft-allocs = 0
net.inet.ip.ipsec-allocs = 0
net.inet.ip.ipsec-soft-bytes = 0
net.inet.ip.ipsec-bytes = 0
net.inet.ip.ipsec-timeout = 86400
net.inet.ip.ipsec-soft-timeout = 80000
net.inet.ip.ipsec-soft-firstuse = 3600
net.inet.ip.ipsec-firstuse = 7200
net.inet.ip.ipsec-enc-alg = aes
net.inet.ip.ipsec-auth-alg = hmac-sha1
net.inet.ip.mtudisc = 1
net.inet.ip.mtudisctimeout = 600
net.inet.ip.ipsec-comp-alg = deflate
biermans@ns1 /home/biermans > ps aux
USER PID %CPU %MEM VSZ RSS TT STAT STARTED TIME COMMAND
biermans 9120 0.0 0.1 280 204 p1 R+ 10:14AM 0:00.00 ps -aux
root 24937 0.0 0.2 100 456 ?? Ss 9:27AM 0:00.01 syslogd
root 17703 0.0 0.1 64 364 ?? Is 9:27AM 0:00.00 portmap
root 14876 0.0 0.2 80 476 ?? Is 9:27AM 0:00.01 inetd
root 19173 0.0 0.4 332 1140 ?? Is 9:27AM 0:00.16 /usr/sbin/ssh
root 2591 0.0 0.2 224 536 ?? Ss 9:27AM 0:00.01 cron
biermans 25494 0.0 0.1 376 284 C0 Is 9:28AM 0:00.01 -ksh (ksh)
root 3175 0.0 0.2 44 424 C1 Is+ 9:28AM 0:00.00 /usr/libexec/
root 27304 0.0 0.2 44 424 C2 Is+ 9:28AM 0:00.00 /usr/libexec/
root 26231 0.0 0.2 44 424 C3 Is+ 9:28AM 0:00.00 /usr/libexec/
root 7156 0.0 0.2 44 424 C5 Is+ 9:28AM 0:00.00 /usr/libexec/
root 5108 0.0 0.5 836 1324 ?? Ss 9:28AM 0:00.03 sendmail: acc
root 27428 0.0 0.1 404 320 C0 I+ 9:28AM 0:00.05 -ksh (ksh)
root 9746 0.0 0.4 156 1000 ?? Is 9:47AM 0:00.02 telnetd -k
biermans 20913 0.0 0.1 376 284 p0 Is 9:47AM 0:00.01 -ksh (ksh)
root 24938 0.0 0.1 400 316 p0 I 9:47AM 0:00.01 -ksh (ksh)
root 27552 0.0 0.4 156 1000 ?? Ss 9:55AM 0:00.02 telnetd -k
biermans 721 0.0 0.1 380 292 p1 Ss 9:55AM 0:00.03 -ksh (ksh)
root 13579 0.0 0.2 60 420 p0 I+ 10:08AM 0:00.00 icmpinfo
root 17407 0.0 0.3 136 652 p0 I+ 10:08AM 0:00.00 more
root 1 0.0 0.1 332 200 ?? Is 9:27AM 0:00.01 /sbin/init
biermans@ns1 /home/biermans >
Many thanks,
-shawn
Shawn L. Bierman
Unix Technical Support Analyst II
Methodist Healthcare
Information Systems
(901) 516-0143 (office)
(901) 516-0043 (fax)