jimzah/freebsd-src
1
0
Fork 0
mirror of https://github.com/freebsd/freebsd-src.git synced 2024-12-04 10:19:26 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

When performing IP fast forwarding, immediately drop traffic which is

Browse Source 
destined for a blackhole route.

This also means that blackhole routes do not need to be bound to lo(4)
or disc(4) interfaces for the net.inet.ip.fastforwarding=1 case.

Submitted by:	james at towardex dot com
Sponsored by:	eXtensible Open Router Project <URL:http://www.xorp.org/>
MFC after:	3 weeks
This commit is contained in:
Bruce M Simpson 2004-11-04 02:14:38 +00:00
parent dc00ca0e43
commit 38f061057b
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=137179
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
sys/netinet/ip_fastfwd.c
View File

@ -432,6 +432,12 @@ passin:
return 1; /* icmp unreach already sent */
ifp = ro.ro_rt->rt_ifp;
/*
* Immediately drop blackholed traffic.
*/
if (ro.ro_rt->rt_flags & RTF_BLACKHOLE)
goto drop;
/*
* Step 5: outgoing firewall packet processing
*/