LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software > Linux - Kernel
Reload this Page How to prevent kernel to reply neighbor solicitation
User Name
Password
Linux - Kernel This forum is for all discussion relating to the Linux kernel.

Notices


Reply
  Search this Thread
Old 04-05-2012, 09:00 AM   #1
Sunil Pradhan
LQ Newbie
 
Registered: Apr 2012
Posts: 3

Rep: Reputation: Disabled
Question How to prevent kernel to reply neighbor solicitation

Hi,

Need to know if is there any flag in "/proc/sys/net/ipv6/conf/<if-name>" which will prevent kernel to respond to the incoming "neighbor solicitation" message.
Or is there any other method to do so?

For IPv4: I set "/proc/sys/net/ipv4/<if-name>/arp_ignore" value to 8. This makes kernel not to reply incoming ARP requests.

I'm in desparate need of this answer.

Cheers,
Sunil
 
Old 04-06-2012, 03:44 AM   #2
malekmustaq
Senior Member
 
Registered: Dec 2008
Location: root
Distribution: Slackware & BSD
Posts: 1,669

Rep: Reputation: 498Reputation: 498Reputation: 498Reputation: 498Reputation: 498
Quote:
Or is there any other method to do so?
What about dropping all UDP packets silently?
 
Old 04-06-2012, 05:53 AM   #3
Sunil Pradhan
LQ Newbie
 
Registered: Apr 2012
Posts: 3

Original Poster
Rep: Reputation: Disabled
Thank you, malekmustaq.

Ignoring UDP packet might not work for my scenario.
Actually, I want to dynamically (depending on some condition which I shall pass to kernel using ioctl) block the neighbor advertisement from kernel and want it to be sent from my application program. This has to be on "per network port" basis. So, this shouldn't affect Neighbor Solicitation/Advertisement on other network ports of the machine.

Cheers,
Sunil
 
Old 12-15-2012, 11:19 AM   #4
credzba
LQ Newbie
 
Registered: Dec 2012
Posts: 1

Rep: Reputation: Disabled
netfilter for ignoring neighbor solicitation
Quote:
Originally Posted by Sunil Pradhan View Post
Thank you, malekmustaq.

Ignoring UDP packet might not work for my scenario.
Actually, I want to dynamically (depending on some condition which I shall pass to kernel using ioctl) block the neighbor advertisement from kernel and want it to be sent from my application program. This has to be on "per network port" basis. So, this shouldn't affect Neighbor Solicitation/Advertisement on other network ports of the machine.

Cheers,
Sunil
Sunil,
Did you find an acceptable answer?

I found I could do what your asking with netfilter, I created an ip6tables entry that routed the network solicitation to a userspace queue, then I wrote a program to control which packets I allowed through.
You could also write a rule to just drop all the NS packets if you wanted to.

I would still like to find a better way to tell an interface to just ignore all neighbor solicitations, but ip6tables is one way you could solve your problem.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to prevent the kernel from loading the wrong module? tredegar Linux - Software 8 10-22-2008 06:58 AM
Prevent yum from updating kernel semberal Fedora 4 12-24-2006 11:27 AM
Prevent Kernel Boot Messages 3saul Linux - Software 1 10-08-2005 11:56 PM
Prevent kernel options from loading slowly Linux - Software 3 10-07-2004 10:54 PM
post reply & submit reply buttons annehoog LQ Suggestions & Feedback 10 01-05-2004 06:43 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software > Linux - Kernel

All times are GMT -5. The time now is 10:16 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration