Home page logo

nanog logo nanog mailing list archives

Re: IP4 address conservation method
From: rdrake <rdrake () direcpath com>
Date: Wed, 05 Jun 2013 23:11:22 -0400

On 2013-06-05 18:25, Ricky Beam wrote:

That said, I do use a stripped debian box as an inter-vlan router. You
don't want to see the pages of tweaks it's taken to stop it being a
broadcast storm generator. (and no, "arpd" is stupid hack.)  It's a
beautiful thing to run "tcpdump ... broadcast" and see no packets!

(And I'm not too happy with the BS 32 interface limit for multicast

Actually, I'd love to see the pages of tweaks. Seems like it would be useful if I need to do this in the future :)
Maybe drop it on the Debian wiki somewhere if you get the chance.

Or at the least it would be nice to know what issues you're hitting now. You can tune the neighbor cache size and timeout via sysctl, so I would think it would be more of a memory limit than anything (unless the kernel uses a really poor hash lookup for arp entries)



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]