Subject: kern/34588: net.inet.ip.hostzerobroadcast not respected by ip filter
To: None <kern-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: None <john@ziaspace.com>
List: netbsd-bugs
Date: 09/22/2006 22:35:00
>Number:         34588
>Category:       kern
>Synopsis:       ip filter does not allow traffic to hosts at the base address of a subnet
>Confidential:   no
>Severity:       serious
>Priority:       low
>Responsible:    kern-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Fri Sep 22 22:35:00 +0000 2006
>Originator:     john@ziaspace.com
>Release:        NetBSD 4.0_BETA
>Organization:
	
>Environment:
	
	
System: NetBSD grittykitty.sixgirls.org 4.0_BETA NetBSD 4.0_BETA (GRITTYKITTY-$Revision: 4.004 $) #1: Fri Sep 8 00:06:45 UTC 2006 john@shiva.ziaspace.com:/usr/obj/sys/arch/macppc/compile/GRITTYKITTY macppc
Architecture: powerpc
Machine: macppc
>Description:
	
When net.inet.ip.hostzerobroadcast is set and when a host is at the base 
address of a subnet, communication works except from machines behind ip 
filter's NAT. See:
http://mail-index.netbsd.org/tech-net/2006/09/13/0003.html
>How-To-Repeat:
	 
Put a host at the base address of a subnet. On another machine which is on 
the same subnet, set net.inet.ip.hostzerobroadcast=1. Try to communicate 
with the host at the base address from somewhere that is behind NAT on the 
other machine.
>Fix:
	
None known.

>Unformatted: