On 2008-11-07, Harald Dunkel <[EMAIL PROTECTED]> wrote: > Peter N. M. Hansteen wrote: >> Harald Dunkel <[EMAIL PROTECTED]> writes: >> >>> Sorry to wake this thread up again, but this problem is a severe >>> security risk. IMHO it is unacceptable that a hardware failure on >>> one NIC of a firewall can put the whole network at risk, just because >>> the mapping between NICs and interface names gets mixed up, and PF >>> suddenly treats the Internet as a subnet of the company LAN. >> >> Semi-random reordering of network interfaces would be a severe >> problem, no doubt. However, my hazy memory was that reordering would >> not occur as you describe, but ICBW, please correct me if this has >> actually been demonstrated to happen. >> > > I can post 2 dmesg logs of the same machine with the NIC > names mixed up. Somehow 2 NICs disappeared on a reboot. On > the next reboot they were back. Attached is the diff.
This isn't entirely unknown with some quad em devices on some motherboards..
