From: "Lehner franz" <hamtitampti@gmail.com>
To: linux-kernel@vger.kernel.org
Subject: BUG: Network: Duplicate MAC adress response in multihomed system : All Kernels
Date: Tue, 24 Oct 2006 22:53:10 +0200 [thread overview]
Message-ID: <aa4884ff0610241353m4bc1ebebh92191fbf8aef9178@mail.gmail.com> (raw)
Maybe it is a setting, i have searched everywhere, but this is really mysterious
take a linux, configure this kind
eth0: 192.168.10.200 / 255.255.255.0
eth1: 192.168.10.201 / 255.255.255.0
Both Interfaces are "real ethernet cards" and are connected to same switch
if you take now a 3'rd machine, and do a
arping -c 1 192.168.10.200
>60 bytes from 00:0c:29:bc:96:fe ( 192.168.10.200): index=0 time=645.876 usec
>60 bytes from 00:0c:29:bc:96:f4 ( 192.168.10.200): index=1 time=1.472 msec
arping -c 1 192.168.10.201
>60 bytes from 00:0c:29:bc:96:fe (192.168.10.201 ): index=0 time=833.988 usec
>60 bytes from 00:0c:29:bc:96:f4 (192.168.10.201): index=1 time=1.211 msec
in fact, this is "fuck" as arp table of switches and other machines
are not knowing what to do
compared to Windows2000, Windows just gives you "one" entry back, (and
YES: the real too...)
This "bug" is in 2.4.x ( i tested may of them) and 2.6.x (not tested
all, but it is exisintg in ubuntu with 2.6.15) , not sure about 2.x
from my reading of RFC, this is "not legal" and even made it possible,
that my switch killed the server, because as he thought, i am spoofing
him.
It gets much more funny, when you have 3 network cards running :-)
then you get 3 replys :-)
# arping -c 1 192.168.10.200
ARPING 192.168.10.200
60 bytes from 00:0c:29:bc:96:08 (192.168.10.200 ): index=0 time=499.010 usec
60 bytes from 00:0c:29:bc:96:fe (192.168.10.200): index=1 time=878.096 usec
60 bytes from 00:0c:29:bc:96:f4 ( 192.168.10.200 ): index=2 time=1.163 msec
--- 192.168.10.200 statistics ---
1 packets transmitted, 3 packets received, -200% unanswered
.....
btw:
control, if you have spoofing filter active
if you have a spoofing filter active, like in debian, kill ist
echo 0 > /proc/sys/net/ipv4/conf/all/rp_filter
the system answers on both IP (or 3 ipadresse) always with the same mac address
with filter disabled, the above phaenomn will come again.
Yes, i think this is a bug.
Personally, i think, it is a bug in the IP stack, as "all interfaces"
receive the Broadcast, and then,
arp_send(ARPOP_REPLY,ETH_P_ARP,sip,dev,tip,sha,dev->dev_addr,sha);
answers
but it answers the request on all interfaces, with the "MAC" of the
interface, which comes from dev->dev_addr
regards
Lehner Franz
next reply other threads:[~2006-10-24 20:53 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-10-24 20:53 Lehner franz [this message]
2006-10-25 18:24 ` BUG: Network: Duplicate MAC adress response in multihomed system : All Kernels James Courtier-Dutton
-- strict thread matches above, loose matches on Subject: below --
2006-10-24 21:14 Lehner Franz
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=aa4884ff0610241353m4bc1ebebh92191fbf8aef9178@mail.gmail.com \
--to=hamtitampti@gmail.com \
--cc=linux-kernel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox