Subject: kern/34588: net.inet.ip.hostzerobroadcast not respected by ip filter
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: None <john@ziaspace.com>
List: netbsd-bugs
Date: 09/22/2006 22:35:00
>Number: 34588
>Category: kern
>Synopsis: ip filter does not allow traffic to hosts at the base address of a subnet
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: kern-bug-people
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Fri Sep 22 22:35:00 +0000 2006
>Originator: john@ziaspace.com
>Release: NetBSD 4.0_BETA
>Organization:
>Environment:
System: NetBSD grittykitty.sixgirls.org 4.0_BETA NetBSD 4.0_BETA (GRITTYKITTY-$Revision: 4.004 $) #1: Fri Sep 8 00:06:45 UTC 2006 john@shiva.ziaspace.com:/usr/obj/sys/arch/macppc/compile/GRITTYKITTY macppc
Architecture: powerpc
Machine: macppc
>Description:
When net.inet.ip.hostzerobroadcast is set and when a host is at the base
address of a subnet, communication works except from machines behind ip
filter's NAT. See:
http://mail-index.netbsd.org/tech-net/2006/09/13/0003.html
>How-To-Repeat:
Put a host at the base address of a subnet. On another machine which is on
the same subnet, set net.inet.ip.hostzerobroadcast=1. Try to communicate
with the host at the base address from somewhere that is behind NAT on the
other machine.
>Fix:
None known.
>Unformatted: