is anyone seeing the dreaded rfc1812 behavior in a citable fashion? how common is it?
we verified that the juniper and cisco platforms we tested replied with the source address being the ingress interface. this is, imiho, good. a kind soul actually sent citable tests
At least my MikroTik RB850Gx2, running 'latest stable' (RouterOS v6.32.2) replies with the outbound interface, not the inbound.
I'd assume this is because by default, icmp_errors_use_inbound_ifaddr in linux is disabled, and they haven't changed the default.
No idea if that can be tweaked in the weird maze of mikrotik config options.
and from the same kind engineer
And just to add even more inconsistency, I checked on my Ubiquiti EdgeMax (a VyOS fork) which does let me check the state of sysctls:
router:/etc/sysctl.d$ cat 30-vyatta-router.conf <snip> # Send ICMP responses with primary address of exiting interface net.ipv4.icmp_errors_use_inbound_ifaddr=1 </snip>
So someone in Vyatta decided to explictly set this to be enabled.
so one win and one loss randy