AW: [gentoo-user] ARP-Caching of non-link-local adresses - gentoo-user

From:	Peter Pan <osaka@×××.net>
To:	gentoo-user@l.g.o
Subject:	AW: [gentoo-user] ARP-Caching of non-link-local adresses
Date:	Wed, 04 Jan 2012 18:59:49
Message-Id:	`000001cccb12$3d6375c0$b82a6140$@gmx.net`
In Reply to:	Re: [gentoo-user] ARP-Caching of non-link-local adresses by Pandu Poluan

1

Hi,

2

3

4

5

This is quite a large list with lots of hosts, but even grep –v the larger /24-ones leaves the arp-table up to 10.000…

6

7

I’ve also heared (but never understood), that the lo-interface should be up and running. This is true in this case, but I noticed, the routes for 127.0.0.1 are missing in some tables. 

8

9

I slightly doubt,  that this is the root-cause for the exploding arp-cache, but I though it’s worth mentioning.

Thanks for your help, and regards,

here is the output:

host ~ # ip rule sh

22

23

0:      from all lookup local

24

25

32717:  from 192.168.254.0/24 lookup wlan

26

27

32718:  from 192.168.1.30 lookup dmz

28

29

32719:  from 192.168.1.129 lookup dmz

30

31

32720:  from 192.168.1.118 lookup dmz

32

33

32721:  from 192.168.1.117 lookup dmz

34

35

32722:  from 192.168.1.106 lookup owa

36

37

32723:  from 192.168.1.105 lookup dmz

38

39

32724:  from 192.168.1.103 lookup dmz

40

41

32725:  from 192.168.1.100 lookup dmz

42

43

32726:  from 192.168.1.99 lookup dmz

44

45

32727:  from 192.168.1.76 lookup dmz

46

47

32728:  from 192.168.1.56 lookup dmz

48

49

32729:  from 192.168.1.48 lookup dmz

50

51

32730:  from 192.168.1.39 lookup dmz

52

53

32731:  from 192.168.1.25 lookup dmz

54

55

32732:  from 192.168.1.24 lookup dmz

56

57

32733:  from 192.168.1.23 lookup dmz

58

59

32734:  from 213.XXX.143.128/26 lookup dmz

60

61

32735:  from 213.XXX.141.96/27 lookup dmz

62

63

32736:  from 213.XXX.140.0/27 lookup dmz

64

65

32737:  from 89.XXX.XXX.0/24 lookup dmz

66

67

32738:  from 10.23.47.0/24 lookup voip

68

69

32739:  from 10.23.42.0/24 lookup vpn2

70

71

32741:  from 192.168.1.0/24 lookup lan

72

73

32742:  from 192.168.1.30 lookup dmz

74

75

32743:  from 192.168.1.129 lookup dmz

76

77

32744:  from 192.168.1.118 lookup dmz

78

79

32745:  from 192.168.1.117 lookup dmz

80

81

32746:  from 192.168.1.106 lookup owa

82

83

32747:  from 192.168.1.105 lookup dmz

84

85

32748:  from 192.168.1.103 lookup dmz

86

87

32749:  from 192.168.1.100 lookup dmz

88

89

32750:  from 192.168.1.99 lookup dmz

90

91

32751:  from 192.168.1.76 lookup dmz

92

93

32752:  from 192.168.1.56 lookup dmz

94

95

32753:  from 192.168.1.48 lookup dmz

96

97

32754:  from 192.168.1.39 lookup dmz

98

99

32755:  from 192.168.1.25 lookup dmz

100

101

32756:  from 192.168.1.24 lookup dmz

102

103

32757:  from 192.168.1.23 lookup dmz

104

105

32758:  from 213.XXX.XXX.128/26 lookup dmz

106

107

32759:  from 213.XXX.XXX.96/27 lookup dmz

108

109

32760:  from 213.XXX.XXX.0/27 lookup dmz

110

111

32761:  from 89.XXX.XXX.0/24 lookup dmz

112

113

32762:  from 10.23.47.0/24 lookup voip

114

115

32763:  from 10.23.42.0/24 lookup vpn2

116

117

32765:  from 192.168.1.0/24 lookup lan

118

119

32766:  from all lookup main

120

121

32767:  from all lookup default

table wlan

126

127

host ~ # ip route show table wlan

128

129

default dev ppp0  scope link

130

131

89.XXX.XXX.0/24 dev br0  scope link

132

133

127.0.0.0/8 dev lo  scope link

134

135

192.168.1.0/24 dev lan  scope link

136

137

192.168.51.0/24 via 89.XXX.XXX.82 dev br0

138

139

192.168.52.0/24 via 89.XXX.XXX.82 dev br0

140

141

192.168.53.0/24 via 89.XXX.XXX.82 dev br0

142

143

192.168.113.0/24 via 192.168.1.113 dev lan

144

145

192.168.254.0/24 dev wlan  scope link

146

147

213.XXX.140.0/27 dev br0  scope link

148

149

213.XXX.141.96/27 dev br0  scope link

150

151

213.XXX.143.128/26 dev br0  scope link

table dmz

156

157

host ~ # ip route show table dmz

158

159

default dev br0  scope link

160

161

89.XXX.XXX.0/24 dev br0  scope link

162

163

127.0.0.0/8 dev lo  scope link

164

165

192.168.1.0/24 dev lan  scope link

166

167

192.168.7.0/24 dev tun0  scope link

168

169

192.168.9.0/24 dev tun0  scope link

170

171

192.168.20.0/24 dev tun1  scope link

172

173

192.168.42.0/24 dev tun1  scope link

174

175

192.168.51.0/24 via 89.XXX.XXX.82 dev br0

176

177

192.168.52.0/24 via 89.XXX.XXX.82 dev br0

178

179

192.168.53.0/24 via 89.XXX.XXX.82 dev br0

180

181

192.168.113.0/24 via 192.168.1.113 dev lan

182

183

192.168.254.0/24 dev wlan  scope link

184

185

213.XXX.140.0/27 dev br0  scope link

186

187

213.XXX.141.96/27 dev br0  scope link

188

189

213.XXX.143.128/26 dev br0  scope link

table owa

194

195

host ~ # ip route show table owa

196

197

default dev br0  scope link

198

199

89.XXX.XXX.0/24 dev br0  scope link

200

201

127.0.0.0/8 dev lo  scope link

202

203

192.168.1.0/24 dev lan  scope link

204

205

192.168.7.0/24 dev tun0  scope link

206

207

192.168.9.0/24 dev tun0  scope link

208

209

192.168.20.0/24 dev tun1  scope link

210

211

192.168.42.0/24 dev tun1  scope link

212

213

192.168.51.0/24 via 89.XXX.XXX.82 dev br0

214

215

192.168.52.0/24 via 89.XXX.XXX.82 dev br0

216

217

192.168.53.0/24 via 89.XXX.XXX.82 dev br0

218

219

192.168.113.0/24 via 192.168.1.113 dev lan

220

221

213.XXX.140.0/27 dev br0  scope link

222

223

213.XXX.141.96/27 dev br0  scope link

224

225

213.XXX.143.128/26 dev br0  scope link

table voip

230

231

host ~ # ip route show table voip

232

233

default dev lan  scope link

234

235

192.168.1.0/24 dev lan  scope link

table vpn2

240

241

host ~ # ip route show table vpn2

242

243

192.168.1.0/24 dev lan  scope link

244

245

213.XXX.140.0/27 dev br0  scope link

246

247

213.XXX.141.96/27 dev br0  scope link

248

249

213.XXX.143.128/28 dev br0  scope link

table lan

254

255

host ~ # ip route show table lan

256

257

default dev ppp0  scope link

258

259

46.137.XXX.148 dev br0  scope link

260

261

46.137.XXX.212 dev br0  scope link

262

263

62.52.XX.252 dev br0  scope link

264

265

62.XXX.14.0/24 dev br0  scope link

266

267

62.XXX.192.204 dev br0  scope link

268

269

78.46.XXX.24/29 dev br0  scope link

270

271

80.153.XX.139 dev br0  scope link

272

273

81.137.XX.94 dev br0  scope link

274

275

83.104.XXX.105 dev br0  scope link

276

277

89.XXX.XXX.0/24 dev br0  scope link

278

279

127.0.0.0/8 dev lo  scope link

280

281

192.168.1.0/24 dev lan  scope link

282

283

192.168.7.0/24 dev tun0  scope link

284

285

192.168.9.0/24 dev tun0  scope link

286

287

192.168.20.0/24 dev tun1  scope link

288

289

192.168.42.0/24 dev tun1  scope link

290

291

192.168.51.0/24 via 89.244.135.82 dev br0

292

293

192.168.52.0/24 via 89.244.135.82 dev br0

294

295

192.168.53.0/24 via 89.244.135.82 dev br0

296

297

192.168.113.0/24 via 192.168.1.113 dev lan

298

299

192.168.254.0/24 dev wlan  scope link

300

301

193.XXX.6.130 dev br0  scope link

302

303

193.XXX.12.0/24 dev br0  scope link

304

305

193.XXX.13.0/24 dev br0  scope link

306

307

193.XXX.14.0/24 dev br0  scope link

308

309

195.XXX.161.250 dev br0  scope link

310

311

212.XXX.12.0/24 dev br0  scope link

312

313

213.XXX.33.0/24 dev br0  scope link

314

315

213.XXX.140.0/27 dev br0  scope link

316

317

213.XXX.141.96/27 dev br0  scope link

318

319

213.XXX.143.128/26 dev br0  scope link

table main

324

325

host ~ # ip route show table main

326

327

default via 89.XXX.XXX.3 dev br0

328

329

87.186.224.XX dev ppp0  proto kernel  scope link  src 79.194.124.XXX

330

331

89.XXX.XXX.0/24 dev br0  proto kernel  scope link  src 89.XXX.XXX.4

332

333

127.0.0.0/8 via 127.0.0.1 dev lo

334

335

134.44.XXX.0/24 dev lan  proto kernel  scope link  src 134.44.XXX.102

336

337

192.168.1.0/24 dev lan  proto kernel  scope link  src 192.168.1.110

338

339

192.168.2.0/24 dev mgm  proto kernel  scope link  src 192.168.2.254

340

341

192.168.7.0/24 dev tun0  scope link

342

343

192.168.9.0/24 dev tun0  proto kernel  scope link  src 192.168.9.1

344

345

192.168.20.0/24 dev tun1  scope link

346

347

192.168.42.0/24 dev tun1  proto kernel  scope link  src 192.168.42.1

348

349

192.168.254.0/24 dev wlan  proto kernel  scope link  src 192.168.254.254

350

351

213.XXX.140.0/27 dev br0  proto kernel  scope link  src 213.XXX.140.2

352

353

213.XXX.141.96/27 dev br0  proto kernel  scope link  src 213.XXX.141.126

354

355

213.XXX.143.128/26 dev br0  proto kernel  scope link  src 213.XXX.143.132

host ~ # ip route show table default

360

361

host ~ #

Von: Pandu Poluan [mailto:pandu@××××××.info] 

368

Gesendet: Mittwoch, 4. Januar 2012 18:56

369

An: gentoo-user@l.g.o

370

Betreff: Re: [gentoo-user] ARP-Caching of non-link-local adresses

On Jan 4, 2012 11:20 PM, "Peter Pan" <osaka@×××.net> wrote:

376

>

377

> Hi list,

378

>

379

380

----- >8 snip

381

382

Can you post the output of "ip rule sh"?

383

384

And for every table listed in the above, post the output of "ip route sh table $TABLENAME"?

385

386

Rgds,

1	Hi,
2
3
4
5	This is quite a large list with lots of hosts, but even grep –v the larger /24-ones leaves the arp-table up to 10.000…
6
7	I’ve also heared (but never understood), that the lo-interface should be up and running. This is true in this case, but I noticed, the routes for 127.0.0.1 are missing in some tables.
8
9	I slightly doubt, that this is the root-cause for the exploding arp-cache, but I though it’s worth mentioning.
10
11
12
13	Thanks for your help, and regards,
14
15
16
17	here is the output:
18
19
20
21	host ~ # ip rule sh
22
23	0: from all lookup local
24
25	32717: from 192.168.254.0/24 lookup wlan
26
27	32718: from 192.168.1.30 lookup dmz
28
29	32719: from 192.168.1.129 lookup dmz
30
31	32720: from 192.168.1.118 lookup dmz
32
33	32721: from 192.168.1.117 lookup dmz
34
35	32722: from 192.168.1.106 lookup owa
36
37	32723: from 192.168.1.105 lookup dmz
38
39	32724: from 192.168.1.103 lookup dmz
40
41	32725: from 192.168.1.100 lookup dmz
42
43	32726: from 192.168.1.99 lookup dmz
44
45	32727: from 192.168.1.76 lookup dmz
46
47	32728: from 192.168.1.56 lookup dmz
48
49	32729: from 192.168.1.48 lookup dmz
50
51	32730: from 192.168.1.39 lookup dmz
52
53	32731: from 192.168.1.25 lookup dmz
54
55	32732: from 192.168.1.24 lookup dmz
56
57	32733: from 192.168.1.23 lookup dmz
58
59	32734: from 213.XXX.143.128/26 lookup dmz
60
61	32735: from 213.XXX.141.96/27 lookup dmz
62
63	32736: from 213.XXX.140.0/27 lookup dmz
64
65	32737: from 89.XXX.XXX.0/24 lookup dmz
66
67	32738: from 10.23.47.0/24 lookup voip
68
69	32739: from 10.23.42.0/24 lookup vpn2
70
71	32741: from 192.168.1.0/24 lookup lan
72
73	32742: from 192.168.1.30 lookup dmz
74
75	32743: from 192.168.1.129 lookup dmz
76
77	32744: from 192.168.1.118 lookup dmz
78
79	32745: from 192.168.1.117 lookup dmz
80
81	32746: from 192.168.1.106 lookup owa
82
83	32747: from 192.168.1.105 lookup dmz
84
85	32748: from 192.168.1.103 lookup dmz
86
87	32749: from 192.168.1.100 lookup dmz
88
89	32750: from 192.168.1.99 lookup dmz
90
91	32751: from 192.168.1.76 lookup dmz
92
93	32752: from 192.168.1.56 lookup dmz
94
95	32753: from 192.168.1.48 lookup dmz
96
97	32754: from 192.168.1.39 lookup dmz
98
99	32755: from 192.168.1.25 lookup dmz
100
101	32756: from 192.168.1.24 lookup dmz
102
103	32757: from 192.168.1.23 lookup dmz
104
105	32758: from 213.XXX.XXX.128/26 lookup dmz
106
107	32759: from 213.XXX.XXX.96/27 lookup dmz
108
109	32760: from 213.XXX.XXX.0/27 lookup dmz
110
111	32761: from 89.XXX.XXX.0/24 lookup dmz
112
113	32762: from 10.23.47.0/24 lookup voip
114
115	32763: from 10.23.42.0/24 lookup vpn2
116
117	32765: from 192.168.1.0/24 lookup lan
118
119	32766: from all lookup main
120
121	32767: from all lookup default
122
123
124
125	table wlan
126
127	host ~ # ip route show table wlan
128
129	default dev ppp0 scope link
130
131	89.XXX.XXX.0/24 dev br0 scope link
132
133	127.0.0.0/8 dev lo scope link
134
135	192.168.1.0/24 dev lan scope link
136
137	192.168.51.0/24 via 89.XXX.XXX.82 dev br0
138
139	192.168.52.0/24 via 89.XXX.XXX.82 dev br0
140
141	192.168.53.0/24 via 89.XXX.XXX.82 dev br0
142
143	192.168.113.0/24 via 192.168.1.113 dev lan
144
145	192.168.254.0/24 dev wlan scope link
146
147	213.XXX.140.0/27 dev br0 scope link
148
149	213.XXX.141.96/27 dev br0 scope link
150
151	213.XXX.143.128/26 dev br0 scope link
152
153
154
155	table dmz
156
157	host ~ # ip route show table dmz
158
159	default dev br0 scope link
160
161	89.XXX.XXX.0/24 dev br0 scope link
162
163	127.0.0.0/8 dev lo scope link
164
165	192.168.1.0/24 dev lan scope link
166
167	192.168.7.0/24 dev tun0 scope link
168
169	192.168.9.0/24 dev tun0 scope link
170
171	192.168.20.0/24 dev tun1 scope link
172
173	192.168.42.0/24 dev tun1 scope link
174
175	192.168.51.0/24 via 89.XXX.XXX.82 dev br0
176
177	192.168.52.0/24 via 89.XXX.XXX.82 dev br0
178
179	192.168.53.0/24 via 89.XXX.XXX.82 dev br0
180
181	192.168.113.0/24 via 192.168.1.113 dev lan
182
183	192.168.254.0/24 dev wlan scope link
184
185	213.XXX.140.0/27 dev br0 scope link
186
187	213.XXX.141.96/27 dev br0 scope link
188
189	213.XXX.143.128/26 dev br0 scope link
190
191
192
193	table owa
194
195	host ~ # ip route show table owa
196
197	default dev br0 scope link
198
199	89.XXX.XXX.0/24 dev br0 scope link
200
201	127.0.0.0/8 dev lo scope link
202
203	192.168.1.0/24 dev lan scope link
204
205	192.168.7.0/24 dev tun0 scope link
206
207	192.168.9.0/24 dev tun0 scope link
208
209	192.168.20.0/24 dev tun1 scope link
210
211	192.168.42.0/24 dev tun1 scope link
212
213	192.168.51.0/24 via 89.XXX.XXX.82 dev br0
214
215	192.168.52.0/24 via 89.XXX.XXX.82 dev br0
216
217	192.168.53.0/24 via 89.XXX.XXX.82 dev br0
218
219	192.168.113.0/24 via 192.168.1.113 dev lan
220
221	213.XXX.140.0/27 dev br0 scope link
222
223	213.XXX.141.96/27 dev br0 scope link
224
225	213.XXX.143.128/26 dev br0 scope link
226
227
228
229	table voip
230
231	host ~ # ip route show table voip
232
233	default dev lan scope link
234
235	192.168.1.0/24 dev lan scope link
236
237
238
239	table vpn2
240
241	host ~ # ip route show table vpn2
242
243	192.168.1.0/24 dev lan scope link
244
245	213.XXX.140.0/27 dev br0 scope link
246
247	213.XXX.141.96/27 dev br0 scope link
248
249	213.XXX.143.128/28 dev br0 scope link
250
251
252
253	table lan
254
255	host ~ # ip route show table lan
256
257	default dev ppp0 scope link
258
259	46.137.XXX.148 dev br0 scope link
260
261	46.137.XXX.212 dev br0 scope link
262
263	62.52.XX.252 dev br0 scope link
264
265	62.XXX.14.0/24 dev br0 scope link
266
267	62.XXX.192.204 dev br0 scope link
268
269	78.46.XXX.24/29 dev br0 scope link
270
271	80.153.XX.139 dev br0 scope link
272
273	81.137.XX.94 dev br0 scope link
274
275	83.104.XXX.105 dev br0 scope link
276
277	89.XXX.XXX.0/24 dev br0 scope link
278
279	127.0.0.0/8 dev lo scope link
280
281	192.168.1.0/24 dev lan scope link
282
283	192.168.7.0/24 dev tun0 scope link
284
285	192.168.9.0/24 dev tun0 scope link
286
287	192.168.20.0/24 dev tun1 scope link
288
289	192.168.42.0/24 dev tun1 scope link
290
291	192.168.51.0/24 via 89.244.135.82 dev br0
292
293	192.168.52.0/24 via 89.244.135.82 dev br0
294
295	192.168.53.0/24 via 89.244.135.82 dev br0
296
297	192.168.113.0/24 via 192.168.1.113 dev lan
298
299	192.168.254.0/24 dev wlan scope link
300
301	193.XXX.6.130 dev br0 scope link
302
303	193.XXX.12.0/24 dev br0 scope link
304
305	193.XXX.13.0/24 dev br0 scope link
306
307	193.XXX.14.0/24 dev br0 scope link
308
309	195.XXX.161.250 dev br0 scope link
310
311	212.XXX.12.0/24 dev br0 scope link
312
313	213.XXX.33.0/24 dev br0 scope link
314
315	213.XXX.140.0/27 dev br0 scope link
316
317	213.XXX.141.96/27 dev br0 scope link
318
319	213.XXX.143.128/26 dev br0 scope link
320
321
322
323	table main
324
325	host ~ # ip route show table main
326
327	default via 89.XXX.XXX.3 dev br0
328
329	87.186.224.XX dev ppp0 proto kernel scope link src 79.194.124.XXX
330
331	89.XXX.XXX.0/24 dev br0 proto kernel scope link src 89.XXX.XXX.4
332
333	127.0.0.0/8 via 127.0.0.1 dev lo
334
335	134.44.XXX.0/24 dev lan proto kernel scope link src 134.44.XXX.102
336
337	192.168.1.0/24 dev lan proto kernel scope link src 192.168.1.110
338
339	192.168.2.0/24 dev mgm proto kernel scope link src 192.168.2.254
340
341	192.168.7.0/24 dev tun0 scope link
342
343	192.168.9.0/24 dev tun0 proto kernel scope link src 192.168.9.1
344
345	192.168.20.0/24 dev tun1 scope link
346
347	192.168.42.0/24 dev tun1 proto kernel scope link src 192.168.42.1
348
349	192.168.254.0/24 dev wlan proto kernel scope link src 192.168.254.254
350
351	213.XXX.140.0/27 dev br0 proto kernel scope link src 213.XXX.140.2
352
353	213.XXX.141.96/27 dev br0 proto kernel scope link src 213.XXX.141.126
354
355	213.XXX.143.128/26 dev br0 proto kernel scope link src 213.XXX.143.132
356
357
358
359	host ~ # ip route show table default
360
361	host ~ #
362
363
364
365
366
367	Von: Pandu Poluan [mailto:pandu@××××××.info]
368	Gesendet: Mittwoch, 4. Januar 2012 18:56
369	An: gentoo-user@l.g.o
370	Betreff: Re: [gentoo-user] ARP-Caching of non-link-local adresses
371
372
373
374
375	On Jan 4, 2012 11:20 PM, "Peter Pan" <osaka@×××.net> wrote:
376	>
377	> Hi list,
378	>
379
380	----- >8 snip
381
382	Can you post the output of "ip rule sh"?
383
384	And for every table listed in the above, post the output of "ip route sh table $TABLENAME"?
385
386	Rgds,

Gentoo Archives: gentoo-user