As the comment says in the vlan if-up script, this setting has nothing to do with vlans and really should go into ifupdown itself; it makes no sense for the setting to only work if the 'vlan' package is installed (and it will work for vlan and non-vlan interfaces as long as 'vlan' is installed).
However, since this is 'how it has always worked' with ifupdown and nobody has complained, and ifupdown is riding into the sunset, it makes no sense to do more than the minimum to fix this. I'll make the tweak to the vlan if-up script and leave it at that. ** Bug watch added: Debian Bug tracker #736207 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=736207 ** Also affects: vlan (Debian) via https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=736207 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of नेपाली भाषा समायोजकहरुको समूह, which is subscribed to Xenial. Matching subscriptions: Ubuntu 16.04 Bugs https://bugs.launchpad.net/bugs/1716964 Title: VLAN network script if-up.d/ip limits rp_filter value to 0 or 1 Status in vlan package in Ubuntu: In Progress Status in vlan source package in Trusty: In Progress Status in vlan source package in Xenial: In Progress Status in vlan source package in Zesty: In Progress Status in vlan package in Debian: Unknown Bug description: When configuring a VLAN interface on /etc/network/interfaces, setting the ip-rp-filter value to 2 (loose mode reverse filtering) gets overridden by the /etc/network/if-up.d/ip script, which only allows for values 0 and 1. This is the relevant configuration in /etc/network/interfaces # The primary network interface auto eno1 iface eno1 inet static address 10.1.2.36 netmask 255.255.0.0 gateway 10.1.1.2 dns-search xxx.yy dns-nameservers 10.1.2.22 10.1.2.24 # The administrative network auto eno1.2 iface eno1.2 inet static address 172.16.1.8 netmask 255.255.0.0 ip-rp-filter 2 vlan-raw-device eno1 But it does not get correctly set ~# cat /proc/sys/net/ipv4/conf/eno1.2/rp_filter 1 And this is the script overriding the configuration ~# cat /etc/network/if-up.d/ip #!/bin/sh # This should probably go into ifupdown # But usually only those with lots of interfaces (vlans) need these if [ -d "/proc/sys/net/ipv4/conf/$IFACE" ] then if [ -n "$IF_IP_PROXY_ARP" ]; then if [ "$IF_IP_PROXY_ARP" -eq "1" ]; then echo 1 > "/proc/sys/net/ipv4/conf/$IFACE/proxy_arp" else echo 0 > "/proc/sys/net/ipv4/conf/$IFACE/proxy_arp" fi fi if [ -n "$IF_IP_RP_FILTER" ]; then if [ "$IF_IP_RP_FILTER" -eq "0" ]; then echo 0 > "/proc/sys/net/ipv4/conf/$IFACE/rp_filter" else echo 1 > "/proc/sys/net/ipv4/conf/$IFACE/rp_filter" fi fi fi It checks if $IF_IP_RP_FILTER is 0 and sets it as 0, otherwise sets it as 1, so it never allows to set is to 2 (loose mode). To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/vlan/+bug/1716964/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~group.of.nepali.translators Post to : [email protected] Unsubscribe : https://launchpad.net/~group.of.nepali.translators More help : https://help.launchpad.net/ListHelp
