Sorry for the late summary, but I have as much free time as I'm sure the rest
of you have :(
My original question was:
>
>I know I've seen this somewhere, but I can't remember where.
>
>We have several local networks, and sun servers with interfaces on multiple
>networks. How do I disable routing on the Sun machines? I need to do this for
>both Solaris 1 and Solaris 2.
>
>Thanks,
>
>--
>Steve Ozoa
>Telecommunications Engineer 408-436-4292
>ATMEL Corporation fax 408-436-4200
>http://www.atmel.com/ pager 408-233-5966
>sozoa@atmel.com
>
>
I received a few suggestions to use a default router, but that's not
appropriate for our environment - we have a large number of clients and
servers, and we want to use a standard routing protocol, so if we add or change
a router, the right one(s) will still be used.
The answer for Solaris 1 is to change
#define IPFORWARDING 0
to
#define IPFORWARDING -1
in /sys/netinet/in_proto.c, then rebuild the kernel.
For Solaris 2, up to 2.4, in /etc/init.d/inetinit, insert
numifs=2
numptptifs=0
After the lines
numifs=`ifconfig -au grep inet wc -l`
numptptifs=`ifconfig -au grep inet egrep -e '-->' wc -l`
For Solaris 2.5, 'touch /etc/notrouter' and reboot.
Also for Solaris 2.x, there have been several suggestions involving ndd, which
I haven't looked into yet:
# turn off source routing and ip forwarding
/usr/sbin/ndd -set /dev/ip ip_forwarding 0
/usr/sbin/ndd -set /dev/ip ip_forward_src_routed 0
/usr/sbin/ndd -set /dev/tcp tcp_conn_req_max 32
-----------------------------------------------------------
example% ndd -set /dev/ip ip_forwarding 0
-----------------------------------------------------------
The man page on "ndd" has sufficient info on this - specifically, you
would be looking at ndd /dev/tcp ip_forwarding set to "0"...
-----------------------------------------------------------
under solaris 2, the command is ndd /dev/ip ip_routing 0
-----------------------------------------------------------
A couple of people also sent a Sun document, which I won't include here, but I
have included the table of contents:
====================
INFODOC ID: 11992
SYNOPSIS: ROUTING PSD/FAQ
DETAIL DESCRIPTION:
Product Support Document (PSD) Sun Routing
Including route, in.routed, in.rdisc, netmasks, traceroute and arp
Revision: 1.51
Date: May 2, 1996
TABLE OF CONTENTS
=================
1.0: About Routing
1.1: Routing Definitions
1.2: How Routing Starts Up
1.3: IP addresses, Netmasks and Subnets
2.0: Debugging Routing
2.1: ifconfig
2.2: netstat
2.3: ping
2.4: traceroute
3.0: Common How Tos
3.1: How to Set a defaultrouter
3.2: How to Add Static Routes
3.3: How to Use in.rdisc
3.4: How to Use in.routed
3.5: How to Force a Machine to Be a Router
3.6: How to Force a SunOS Machine Not to Be a Router
3.7: How to Force a Solaris Machine Not to Be a Router
3.8: How to Set a Netmask under SunOS
3.9: How to Set a Netmask under Solaris
3.10: How to Subnet by Bit
3.11: How to Protect a Gateway Machine
3.12: How to Proxy ARP
3.13: How to Delete ARP Entries
4.0: Some Frequently Asked Questions
4.1: Miscellaneous Questions
4.2: Basic Routing Problems
4.3: in.routed Errors
4.4: netmask Problems
4.5: traceroute Problems
4.6: arp Problems
5.0: Patches
5.1: Routing Patches for SunOS
5.2: Routing Patches for Solaris
5.3: ARP Patches for SunOS
6.0: Known Bugs & RFEs
6.1: Bugs
6.2: RFEs
7.0: References
7.1: Important man Pages
7.2: Sunsolve Documents
7.3: Sun Educational Services
7.4: Solaris Documentation
7.5: Third Party Documentation
7.6: RFCs
8.0: Supportability
9.0: Additional Support
====================
I haven't yet tried any of these suggestions, but I'm sure one of them will be what I want.
Thanks to:
alevin@ltcm.com (Avi J. Levin)
Dan Pritts <danno@aa.fv.com>
"K.Ravi" <RAVKRISH.IN.ORACLE.COM.ofcmail@in.oracle.com>
Veronica <veronica@uac.edu.au>
Chris Wozniak <KAW@wapet.com.au>
Shaun Welch <swelch@home.net>
Sten Lindgren <ged@nts.mh.se>
sunman@oak.london.waii.com (Robert.Gillespie@waii.com)
Jacques Rall <jacques.rall@za.eds.com>
"Marcos Padilla - Ingeniero de Soporte (227)" <mpadilla@cientec.cl>
"Marks, Evan R" <markser@aetna.com>
Kirk Anderson <kma@hrb.com>
Patrick Daloze <patdal@sisca.qc.ca>
David Kinney <dkinney@gti.net>
Rahul Roy <roy@bluestone.COM>
"Trevor Paquette" <tpaquett@aec.ca>
James.E.Coby.Jr@cdc.com (James Coby)
Rich Casto <rich@loopexpert.com>
billt@dat.com (Bill Townsley)
"Marty W. Bullock" <mbullock@mindspring.com>
Waqar Hafiz <whafiz@london.micrognosis.com>
"Walter R. Moore" <moorewr@eckerd.edu>
Steve Franks <scf@nabaus.com.au>
simon wagstaff <wagstaff@tellabs.com>
"Matthew J. Hill" <MHILL@graver.com>
and anyone I may have missed.
-- Steve Ozoa Telecommunications Engineer 408-436-4292 ATMEL Corporation fax 408-436-4200 http://www.atmel.com/ pager 408-233-5966 sozoa@atmel.com
This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:11:43 CDT