summaryrefslogtreecommitdiffstats
path: root/etc/rc.d/routing
Commit message (Collapse)AuthorAgeFilesLines
* Don't add static IPv6 routes when to all FIBs when net.add_addr_allfibs is 0.rpaulo2015-02-061-2/+3
| | | | | | This avoids a bunch of boot time warnings when rc.d/routing runs. MFC after: 1 week
* Renove faith(4) and faithd(8) from base. It looks like industrymelifaro2014-11-091-2/+2
| | | | | | | | | have chosen different (and more traditional) stateless/statuful NAT64 as translation mechanism. Last non-trivial commits to both faith(4) and faithd(8) happened more than 12 years ago, so I assume it is time to drop RFC3142 in FreeBSD. No objections from: net@
* Make net.inet.ip.sourceroute, net.inet.ip.accept_sourceroute, andhrs2014-09-151-15/+13
| | | | | | net.inet.ip.process_options vnet-aware. Revert changes in r271545. Suggested by: bz
* Do not set net.inet.ip.{sourceroute,accept_sourceroute} in a vnet jail.hrs2014-09-131-13/+15
| | | | | | | The following warnings were displayed: sysctl: net.inet.ip.sourceroute=0: Operation not permitted sysctl: net.inet.ip.accept_sourceroute=0: Operation not permitted
* Return false status only when adding a route is failed. It couldhrs2014-08-291-26/+24
| | | | erroneously return false due to an afexists() check loop in routing_start().
* Remove IPX support.glebius2014-03-141-29/+4
| | | | | | | | | | | IPX was a network transport protocol in Novell's NetWare network operating system from late 80s and then 90s. The NetWare itself switched to TCP/IP as default transport in 1998. Later, in this century the Novell Open Enterprise Server became successor of Novell NetWare. The last release that claimed to still support IPX was OES 2 in 2007. Routing equipment vendors (e.g. Cisco) discontinued support for IPX in 2011. Thus, IPX won't be supported in FreeBSD 11.0-RELEASE.
* Create the default router last. This allows using an staticdelphij2013-09-021-2/+2
| | | | | | | | interface route for default routes, which seems to be common among many dedicated hosting providers. Reviewed by: hrs MFC after: 2 weeks
* Add :ifname modifier to specify interface-specific routes intohrs2013-06-091-82/+117
| | | | | | | | | | | | | | | | | {,ipv6_}static_routes and rc.d/routing. For example: static_routes="foo bar:em0" route_foo="-net 10.0.0.0/24 -gateway 192.168.2.1" route_bar="-net 192.168.1.0/24 -gateway 192.168.0.2" At boot time, all of the static routes are installed as before. The differences are: - "/etc/rc.d/netif start/stop <if>" now configures static routes with :<if> if any. - "/etc/rc.d/routing start/stop <af> <if>" works as well. <af> cannot be omitted when <if> is specified, but a keyword "any" or "all" can be used for <af> and <if>.
* Refine the "nojail" rc keyword, adding "nojailvnet" for files that don'tjamie2013-05-191-1/+1
| | | | | | | | | apply to most jails but do apply to vnet jails. This includes adding a new sysctl "security.jail.vnet" to identify vnet jails. PR: conf/149050 Submitted by: mdodd MFC after: 3 days
* Fix condition to check if the maximum number of FIBs is greater than 0 or not.hrs2012-11-181-1/+1
| | | | Spotted by: zont
* Use -fib N modifier to add/delete a route to/from multiple FIBs.hrs2012-11-171-33/+11
|
* Rather than printing the output from route add for all FIBs just print thembz2012-03-041-16/+30
| | | | | | | | | for the default FIB followed by a statement with a list of FIB numbers for all the other FIBs we install the routes for. Request by: kib (to make it less noisy) Tested by: kib MFC after: 3 days
* Merge multi-FIB IPv6 support from projects/multi-fibv6/head/:bz2012-02-171-5/+21
| | | | | | | | | | | | Extend the so far IPv4-only support for multiple routing tables (FIBs) introduced in r178888 to IPv6 providing feature parity. This includes an extended rtalloc(9) KPI for IPv6, the necessary adjustments to the network stack, and user land support as in netstat. Sponsored by: Cisco Systems, Inc. Reviewed by: melifaro (basically) MFC after: 10 days
* Fix $ipv6_network_interfaces handling in rc.d/routing. It could fail whenhrs2012-02-041-2/+4
| | | | | | it was set to "auto", for example. MFC after: 3 days
* rc.d: Eliminate some unnecessary non-POSIX constructs:jilles2011-11-081-0/+1
| | | | | | * set - ... * empty braces * ^ in character class
* rc.d/routing: Fix ugly output with additional routing options.jilles2011-07-171-15/+27
| | | | | | | | | Print a separate "Additional routing options" line for each address family which has additional options, so that it does not get mixed up with the output from adding routes. This also reverts r224048 which added newlines to two arbitrary routing options.
* Remove "-n" from echokevlo2011-07-151-2/+2
| | | | Reviewed by: dougb
* Replace ${SYSCTL_W} with ${SYSCTL} in rc.d scripts, as they are identical.emaste2011-03-301-18/+18
| | | | | | This is a further clean up after r202988. SYSCTL_W is still initialized in rc.subr as some ports may still use it.
* Better handling of ipv6_default_interface usingume2010-04-261-21/+11
| | | | | | | net.inet6.ip6.use_defaultzone=1. Now, it works IPv6 link-local unicast addresses as well as IPv6 link-local multicast addresses. MFC after: 1 week
* - Enable an afexists() check only when no AF argument is specified.hrs2009-10-021-55/+76
| | | | | | - Simplify helper functions. Discussed with: ume
* - Split routing_*() and option_*() to *_AF() and add afexists() checkhrs2009-10-021-55/+85
| | | | | | | | for each address family. Replace AF_static() with static_AF() for consistency. - Display a message only if the user sets a non-default value, and set a sysctl explicitly even if it is the default value.
* Don't do an IPv6 operation when the kernel doesn't haveume2009-09-301-2/+6
| | | | | | | | an IPv6 support. Reported by: Alexander Best <alexbestms__at__math.uni-muenster.de> Confirmed by: Paul B. Mahol <onemda__at__gmail.com>, Alexander Best <alexbestms__at__math.uni-muenster.de>
* Move rc.d/{stf,faith} to just before rc.d/routing.hrs2009-09-261-1/+1
| | | | Pointed out by: tegge
* Correct a copy and paste error using the variable name from thebz2009-09-131-1/+1
| | | | | | | | | legacy IP handling rather than the IPv6 version. Reported by: Pegasus Mc Cleaft (ken mthelicon.com) Tested by: Pegasus Mc Cleaft (ken mthelicon.com) MFC after: 2 days X-MFX with: r197139
* Integrate rc.d/network_ipv6 into rc.d/netif:hrs2009-09-121-44/+206
| | | | | | | | | | - Add rc.d/stf and rc.d/faith for stf(4) and faith(4). - Remove rc.d/auto_linklocal and rc.d/network_ipv6. - Move rc.d/sysctl to just before FILESYSTEMS because rc.d/netif depends on some sysctl variables. Reviewed by: brooks MFC after: 3 days
* As previously discussed, add the svn:executable property to all scriptsdougb2008-07-161-0/+0
|
* Do not print anything unless one of the net/routing options is set.mtm2008-06-231-2/+18
|
* Fix the wait for default route change I made a few weeks ago by creatingbrooks2008-06-051-26/+1
| | | | | | | a new defaultroute script that just does the wait. The previous attempt created a circular dependency through network_ipv6. Pointy hat to: brooks
* Move the wait for a default route to rc.d/routing. Once we test forbrooks2008-05-181-1/+27
| | | | | | | non-dhcp interfaces to negotiate/associate this will make more sense. This also correctly gets run after both devd and netif are run so it has a chance of working.
* Move options that do not have anything to do with routing out ofmtm2007-05-021-41/+0
| | | | | rc.d/routing and in to rc.d/netoptions. Also instead of saying "TCP options" say "IP options".
* Transforming "ppp-user" into just "ppp", step 1:yar2005-10-281-1/+1
| | | | | | | | | | | The rcorder(8) condition PROVIDE'd by the script and REQUIRE'd by the others becomes "ppp". The ultimate goal of the transformation is to reduce confusion resulting from the fact that $name has been "ppp" already. Discussed with: pjd, -rc
* Remove the requirement for the FreeBSD keyword as it no longermtm2004-10-071-1/+1
| | | | | | | makes any sense. Discussed with: dougb, brooks MFC after: 3 days
* Mark scripts as not usable inside a jail by adding keyword 'nojail'.pjd2004-03-081-1/+1
| | | | Some suggestions from: rwatson, Ruben de Groot <mail25@bzerk.org>
* Now that routes for IP over ATM may look much more complex than before,harti2003-08-141-0/+8
| | | | | | | | | use the atmconfig(8) utility instead of route(8) to install those routes. For this we need a new rc.conf variable natm_static_routes that works just like static_routes except that the referenced routes use the syntax of atmconfig(8). Okay'ed by: mtm
* Ugh. Remove debugging echo.mtm2003-06-291-1/+1
|
* o Repocopied routing and netoptions from network2 and network3, respectively.mtm2003-06-291-6/+23
| | | | | | | | o Change the provider names. o Separate routing into two parts: static routing and routing options. The start command will run both parts, but they can be run separately using the static and options command, respectively: (/etc/rc.d/routing static; /etc/rc.d/routing options)
* o Hook the new files up to the build.mtm2003-04-181-1/+1
| | | | | | o Make sure all the scripts reference rc.d/netif and not rc.d/network1 Approved by: markm (mentor)
* Merge in all the changes that Mike Makonnen has been maintaining for agordon2002-07-181-843/+14
| | | | | | | | while. This is only the script pieces, the glue for the build comes next. Submitted by: Mike Makonnen <makonnen@pacbell.net> Reviewed by: silence on -current and -hackers Prodded by: rwatson
* Cosmetic changes to the previous commit, bringing it closer to what Ides2002-04-111-7/+7
| | | | already had in my tree but didn't want to commit.
* Since sshd expects /etc/ssh/ssh_host_rsa_key to exist, we had betterpeter2002-04-101-4/+9
| | | | | create it. Also specify protocol v1/v2 in case people wonder why we generate two RSA keys.
* The good news is that my initial PR was correct... the bad news is that Idougb2002-04-011-1/+5
| | | | | | | | | was apparently smoking something when I committed the last fix, because as ume was kindly enough to set me straight on, amd *will* start with no arguments at all, as long as there is an /etc/amd.conf file for it to read. What it won't do is start with *just* -p. In any case, now it's fixed.
* Don't try to generate ssh keys if ssh isn't installed.des2002-03-191-7/+11
|
* IPFilter may need to be re-sync'ed even if we are not filtering, butcjc2002-03-191-1/+3
| | | | | | | | only doing ipnat(8). Go back to using $ipfilter_active, but turn off $ipfilter_active when loading ipl.ko has failed. Submitted by: devet@devet.org (Arjan de Vet) MFC after: 3 days
* Answer the question posed in 1.126. amd won't start without either adougb2002-03-171-2/+11
| | | | | | | | conf file, or command line options. I brought this up in PR 12432, which (ironically) obrien assigned to me after I became a committer. :) PR: conf/12432 Submitted by: Me
* The reload of ipf(8) rules should depend on $ipfilter_enable, notcjc2002-03-121-2/+1
| | | | | | | $ipfilter_active. $ipfilter_enable is set to "NO" if modules fail to load, and $ipfilter_active can be "YES" when we are not using ipf(8). MFC after: 3 days
* Background the startup of `Amd', it often blocks on startup.obrien2002-03-121-2/+2
|
* Why shouldn't amd always write its PID to a file?obrien2002-03-121-6/+2
| | | | Since I cannot answer that question, make it.
* Redirect stdout of `ipf -y' to /dev/null. This removes a straydd2002-03-041-1/+1
| | | | | "filter sync'd" in the middle of the boot output if IPFilter is enabled, but does not hide any potential errors, which go to stderr.
* There is no reason to demand the administrator set 'natd_interface'cjc2002-02-201-5/+4
| | | | | | | | | | | | | when running natd(8) out of the rc-files. It is perfectly valid for the interface or alias address to be set in a natd(8) configuration file, not on the command line. Also, loosen up the restrictions on identifying an IP address argument in 'natd_interface.' Fix the documentation, rc.conf(5), to reflect this change. Take the bogus default for 'natd_interface' out of /etc/defaults/rc.conf. MFC after: 3 days
* peter points out that we probably should not mess with the sysctl(8)cjc2002-02-081-4/+5
| | | | | | | | | values at all if they are not purposefully set. What if the administrator messed with them in /etc/sysctl.conf? We don't want to overwrite them. If 'log_in_vain' is zero, do not force the issue. If it is non-zero, set it.
OpenPOWER on IntegriCloud