From cd4fd9f0b72b498036101c6ec06b76b3c424169d Mon Sep 17 00:00:00 2001 From: andre Date: Sun, 21 Aug 2005 12:29:39 +0000 Subject: Add an option to have ICMP replies to non-local packets generated with the IP address the packet came through in. This is useful for routers to show in traceroutes the actual path a packet has taken instead of the possibly different return path. The new sysctl is named net.inet.icmp.reply_from_interface and defaults to off. MFC after: 2 weeks --- share/man/man4/icmp.4 | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) (limited to 'share') diff --git a/share/man/man4/icmp.4 b/share/man/man4/icmp.4 index af5c1df..335ac73 100644 --- a/share/man/man4/icmp.4 +++ b/share/man/man4/icmp.4 @@ -32,7 +32,7 @@ .\" @(#)icmp.4 8.1 (Berkeley) 6/5/93 .\" $FreeBSD$ .\" -.Dd March 21, 2003 +.Dd August 21, 2005 .Dt ICMP 4 .Os .Sh NAME @@ -137,6 +137,15 @@ Defaults to false. An interface name used for the ICMP reply source in response to packets which are not directly addressed to us. By default continue with normal source selection. +.It Va reply_from_interface +.Pq Vt boolean +Use the IP address of the interface the packet came through in for +responses to packets which are not directly addressed to us. +If enabled this rule is processed before all others. +By default continue with normal source selection. +Enabling this option is particularly useful on routers because it +makes external traceroutes show the actual path a packet has taken +instead of the possibly different return path. .El .Sh ERRORS A socket operation may fail with one of the following errors returned: -- cgit v1.1