OpenSolaris

Printable Version Enter a New Search
Bug ID 6633786
Synopsis ipfilter with no mbcast not working as expected
State 10-Fix Delivered (Fix available in build)
Category:Subcategory network:ipfilter
Keywords broadcast | ipf.conf | ipfilter | rtiq_reviewed
Responsible Engineer Darren Reed
Reported Against
Duplicate Of
Introduced In solaris_nevada
Commit to Fix snv_82
Fixed In snv_82
Release Fixed solaris_nevada(snv_82) , solaris_10u6(s10u6_06) (Bug ID:2157678)
Related Bugs 6451644 , 6633782 , 6645812
Submit Date 26-November-2007
Last Update Date 8-August-2008
Description 
While testing the S10U4 a customer noticed that broadcast were being forwarded from one interface to another through ipfilter, although the ipfilter rules included  "with no mbcast".
Evaluation:
-----------
Currently when we call out to the hooks, we pass the following information:
                FW_HOOKS(ipst->ips_ip4_physical_in_event,
                     ipst->ips_ipv4firewall_physical_in,
                     ill, NULL, ipha, first_mp, mp, ipst);

The local variable flag, ll_multicast (representing whether or not the packet is a broadcast/multicast packet), is nowhere to be seen.  In order to fix this problem we
need to do several things:
1) Add ll_multicast (or whatever happens to be the correct variable) to the FW_HOOKS macro;
2) introduce a new field to hook_pkt_event_t that can transport the information contained in ll_multicast to IPFilter;
3) modify IPFilter to recognise the flag(s) that are present.
Work Around 
N/A
Comments 
N/A