On 9/16/2013 11:21 PM, Tuomo Soini wrote: > > Might I suggest changing order of the commands in patch - we should > always default to using ip command and only fallback to legacy arp etc..
The ip utility is always used to create proxy arp entries, but I prefer the output of 'arp -na' to that of 'ip neigh ls': root@gateway:~# ip neigh add proxy 1.2.3.4 nud permanent dev eth2 root@gateway:~# ip -4 neigh ls 70.90.191.124 dev br0 lladdr ce:a2:a7:f9:fd:cb REACHABLE 172.20.1.149 dev eth2 lladdr 00:22:3f:f6:7c:0e REACHABLE 70.90.191.122 dev br0 lladdr 9e:e3:53:6b:e5:84 STALE 172.20.1.191 dev eth2 lladdr 08:00:27:66:6f:0f REACHABLE 10.0.0.1 dev eth0 lladdr 0c:f8:93:1d:cb:f1 REACHABLE 70.90.191.126 dev eth1 lladdr 00:22:2d:76:5a:aa REACHABLE 172.20.1.151 dev eth2 lladdr b8:c7:5d:e7:a6:25 STALE 172.20.1.107 dev eth2 lladdr 24:fd:52:fd:7d:4c REACHABLE 70.90.191.125 dev br0 lladdr 56:39:90:47:4d:37 STALE 172.20.1.216 dev eth2 lladdr 2c:41:38:15:83:93 REACHABLE root@gateway:~# ip -4 neigh ls nud permanent root@gateway:~# arp -na ? (70.90.191.124) at ce:a2:a7:f9:fd:cb [ether] on br0 ? (172.20.1.149) at 00:22:3f:f6:7c:0e [ether] on eth2 ? (70.90.191.122) at 9e:e3:53:6b:e5:84 [ether] on br0 ? (172.20.1.191) at 08:00:27:66:6f:0f [ether] on eth2 ? (10.0.0.1) at 0c:f8:93:1d:cb:f1 [ether] on eth0 ? (70.90.191.126) at 00:22:2d:76:5a:aa [ether] on eth1 ? (172.20.1.151) at b8:c7:5d:e7:a6:25 [ether] on eth2 ? (172.20.1.107) at 24:fd:52:fd:7d:4c [ether] on eth2 ? (70.90.191.125) at 56:39:90:47:4d:37 [ether] on br0 ? (172.20.1.216) at 2c:41:38:15:83:93 [ether] on eth2 ? (1.2.3.4) at <from_interface> PERM PUB on eth2 Note that nud permanent entries are never displayed by ip; for 'shorewall dump', the output of arp is much more useful. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ LIMITED TIME SALE - Full Year of Microsoft Training For Just $49.99! 1,500+ hours of tutorials including VisualStudio 2012, Windows 8, SharePoint 2013, SQL 2012, MVC 4, more. BEST VALUE: New Multi-Library Power Pack includes Mobile, Cloud, Java, and UX Design. Lowest price ever! Ends 9/20/13. http://pubads.g.doubleclick.net/gampad/clk?id=58041151&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
