On Wed, 3 Feb 2010 10:35:33 +0100, Claudio Jeker wrote: >On Wed, Feb 03, 2010 at 03:02:16PM +1100, Rod Whitworth wrote: >> I sometimes see a bgpd message in /var/log/messages saying: >> /bsd: cannot forward from :: to 2zzz:z000::0005 nxt 17 received on vr2 >> (I snipped the datestamp and hostname to stop linewrap) >> >> It is not common and nothing bad seems to be happening but I'm puzzled >> as to what it means. >> >> Any clues? >> > >This is not from bgpd. It is from the kernel to be precise ip6_forward.c: > * Do not forward packets with unspecified source. It was discussed > * in July 2000, on ipngwg mailing list. > >Someone is sending packets with a src ip of :: (all null address). This is >not allowed. You should try to figure out which host on vr2 is doing this >crap.
Thanx Claudio. Why I didn't notice the /bsd in there must mean I was not getting enough sleep. I guess that the hostname (bgpd1) that I snipped out hit my radar and blurred the kernel name. I'm moving to block all addresses that are not on our /32 v6 and /11 v4 at the downstream routers. That was on a todo list anyway. I appreciate your prompt assistance and I'd like to thank you for OpenBGP as well as your work on OSPF that I may be trying to handle soon. R/ *** NOTE *** Please DO NOT CC me. I <am> subscribed to the list. Mail to the sender address that does not originate at the list server is tarpitted. The reply-to: address is provided for those who feel compelled to reply off list. Thankyou. Rod/ --- This life is not the real thing. It is not even in Beta. If it was, then OpenBSD would already have a man page for it.
