[Xorp-users] OpenBSD IGMP/PIM Issue

Pavlin Radoslavov pavlin at ICSI.Berkeley.EDU
Thu Oct 9 00:49:09 PDT 2008


Further update on the subject.

Pavlin Radoslavov <pavlin at ICSI.Berkeley.EDU> wrote:

> Stegen,
> 
> I was able to replicate all of the issues so here is a quick update:
> 
> * The "RTM version mismatch: expected 4 got 3" error.
>   I will look into that and submit a fix to CVS.
>   Right now I doubt this is related to the rest of the problems.

Those error messages can be ignored. Apparently, OpenBSD sends each
routing message twice, once as RTM_VERSION and once as RTM_OVERSION.
Anyway, the problem is fixed in CVS:

Revision  Changes                                Path
1.17      +12 -2;  commitid: 12b3148ed5b5541a7;
xorp/fea/data_plane/fibconfig/fibconfig_entry_parse_routing_socket.cc
1.17      +12 -2;  commitid: 12b3148ed5b5541a7;
xorp/fea/data_plane/fibconfig/fibconfig_table_parse_routing_socket.cc
1.27      +11 -1;  commitid: 12b3148ed5b5541a7;
xorp/fea/data_plane/ifconfig/ifconfig_parse_routing_socket.cc

> * The fib2mrib coredump seems to be triggered by the FEA failing to
>   read the forwarding table.
>   If you remove the click block in the fea configuration this
>   problem should go away.
>   In any case, this seems a bug in the FEA, because disabled click
>   statement shouldn't trigger that. Hence please submit a Bugzilla
>   entry with your original configuration (fib2mrib and click
>   included), and a copy of the output log messages.
> 
> * The "No route to host" error message seems to be triggered only
>   for IGMP messages (PIM messages seem to be fine).
>   I will try to investigate the issue, unless Bruce beats me to that
>   if you give him a temp. OpenBSD account :)

The problem was that the FEA unconditionally enabled the OpenBSD
pf(4) firewall on startup, and by default the pf(4) drops IP packets
with the Router Alert IP option (included in the IGMP packets).

The problem is now fixed in CVS:

Revision  Changes                               Path
1.21      +7 -1;  commitid: 1346248edb08f41a7;  xorp/fea/fea_node.cc
1.8       +7 -1;  commitid: 1346248edb08f41a7;  xorp/fea/firewall_manager.cc

Please get the latest code from CVS and see whether it works for
you. If using the CVS code is not an option, a possible hackish
work-around is to disable the firewall AFTER XORP is started by
using the following UNIX command:

    pfctl -d

Pavlin



More information about the Xorp-users mailing list