[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: First line in /etc/hosts

On Sun, 13 Feb 2005, Mark Brown wrote:
> On Sun, Feb 13, 2005 at 11:21:09AM -0600, John Hasler wrote:
> > Mark Brown writes:
> 
> > > ...NIS needs to hand out the IP address of the machine...
> 
> > Machines don't have IP numbers.  Interfaces have IP numbers.  Every machine
> 
> Actually, that's not quite the case (as a number of users of Linux's ARP
> implementation have found), though it's a good approximation.

Indeed. For Linux, nodes have IP *numbers* which are all equal, and you have
to take great pains to make sure it behaves in any different way.  iproute2,
arptables and the relative black magic of arp_filter are your only ways to
try to influence that.  Usual route, ifconfig, etc are useless.

BTW, as a corolary, always firewall off 127.0.0.1 to any non-lo traffic,
even when interface forwarding is disabled.  You Have Been Warned.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh
Reply to: