Re: drop silently locally generated packets

"Aleksandar Kostadinov" <avalon@xxxxxxxxxxxxxxxx> · Wed, 16 May 2007 22:56:19 +0300

Hi. I want to drop silently locally generated packets on a specific interface. I tried 2 approaches:

tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: htb
tc filter add dev eth0 parent 1: proto ip u32 match ip dst 
10.10.10.1 flowid 1:1 police conform-exceed drop/drop

tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: prio bands 2 priomap 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0

tc qdisc add dev eth0 parent 1:2 handle 3:0 netem drop 100

tc filter add dev eth0 parent 1: proto ip u32 match ip dst 10.10.10.1 flowid 1:2

Both work (drop the packets to 
10.10.10.1 and pass any others) but when I run "ping 
10.10.10.1" I get after some time continuously "ping: sendmsg: No buffer space available".
Any idea why is this happening? As well how could I drop packets without application being able to detect it?

Thanks much,
Alexander
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: drop silently locally generated packets

Linux Advanced Routing and Traffic Control