[olug] Ping Is Broken
Brian Haley
brian.haley at hp.com
Mon Oct 12 20:36:18 UTC 2009
Rob Townley wrote:
> ping -I is broken
>
> The following deals with bug in ping that made it very difficult to set up a
> system with two gateways.
>
> Demonstration that *ping -I is broken*. When specifying the source
> interface using -I with an *ethX* alias and that interface is not the
> default gateway
> interface, then ping fails. When specifying the interface as an ip address,
> ping works. Search for "Destination Host Unreachable" to find the bug.
I believe ping is working properly here, see below.
> eth*0* = 4.3.2.8 and the default gateway is accessed through a different
> interface eth*1*.
> eth*1* = 192.168.168.155 is used as the device to get to the default
> gateway.
> *FAILS *: ping *-I eth0* 208.67.222.222
> *WORKS*: ping *-I 4.3.2.8* 208.67.222.222
> *WORKS*: ping *-I eth1* 208.67.222.222
> *WORKS*: ping *-I 192.168.168.155* 208.67.222.222
>
> The following are actual results which can be reproduced from an up-to-date
> Fedora 11 or CentOS 5.3 box. Caused a very very long episode of frustration
> when setting up multi gatewayed systems.
>
>
> * ping using eth0 *:
>
> ping -c 2 -B -I eth0 208.67.222.222
> PING 208.67.222.222 (208.67.222.222) from 4.3.2.8 eth0: 56(84) bytes of data.
> From 4.3.2.8 icmp_seq=1 Destination Host Unreachable
> From 4.3.2.8 icmp_seq=2 Destination Host Unreachable
In this case ping is doing an SO_BINDTODEVICE to eth0, so the kernel is going
to force the packets out of it, even if it isn't the "correct" interface. If
you ran tcpdump you'd probably see an ARP resolution failure, or an ICMP from
a gateway.
This confusion could be cleared-up on the man page. What did you expect to
happen in this case?
> The Following all WORK:
> * ping using 4.3.2.8 *:
>
> ping -c 2 -B -I 4.3.2.8 208.67.222.222
> PING 208.67.222.222 (208.67.222.222) from 4.3.2.8 : 56(84) bytes of data.
> 64 bytes from 208.67.222.222: icmp_seq=1 ttl=55 time=562 ms
> 64 bytes from 208.67.222.222: icmp_seq=2 ttl=55 time=642 ms
In this case ping is going to bind() the source address to 4.3.2.8, but not
restrict the interface at all. It works because of the weak end-host model
of Linux where that address can be used on any interface, not just the one
it is configured on.
Your other two examples are similar to this one.
-Brian
More information about the OLUG
mailing list