[nsp] RPF problem with ICMP unreachables
Hank Nussbacher
hank@att.net.il
Sun, 24 Nov 2002 19:02:26 +0200 (IST)
On Sun, 24 Nov 2002, Gert Doering wrote:
> Hi,
>
> On Sun, Nov 24, 2002 at 03:55:46PM +0200, Hank Nussbacher wrote:
> > How does one force a router to not use *highest* IP address to return ICMP
> > unreachables and instead use the interface from where the ICMP came?
>
> I've observed differences inCisco and Juniper here if routing is
> asymmetric.
>
> Cisco seems to reliably reply with the address of the interface that the
> original came in.
>
> Juniper uses the IP address of the *outgoing* interface as the source
> address of the ICMP packet.
I would be happy with either approach :-)
>
> Bothapproaches are "correct", I personally find Cisco's more useful
> (because the output from Juniper is highly confusing on traceroute'ing
> through asymmetrically routed networks).
>
> None of this can explain *your* problem, though, as both types should
> use the interface pointing towards your router...
I know. :-(
-Hank
>
> gert
>
> --
> USENET is *not* the non-clickable part of WWW!
> //www.muc.de/~gert/
> Gert Doering - Munich, Germany gert@greenie.muc.de
> fax: +49-89-35655025 gert.doering@physik.tu-muenchen.de
>